Vulnerabilities > Apple > Airport Base Station Firmware

DATE CVE VULNERABILITY TITLE RISK
2020-10-27 CVE-2019-8588 NULL Pointer Dereference vulnerability in Apple Airport Base Station Firmware
A null pointer dereference was addressed with improved input validation.
network
low complexity
apple CWE-476
7.5
7.5
2020-10-27 CVE-2019-8581 Out-of-bounds Read vulnerability in Apple Airport Base Station Firmware
An out-of-bounds read was addressed with improved input validation.
network
low complexity
apple CWE-125
critical
 9.8
9.8
2020-10-27 CVE-2019-8580 Unspecified vulnerability in Apple Airport Base Station Firmware
Source-routed IPv4 packets were disabled by default.
network
low complexity
apple
7.5
7.5
2020-10-27 CVE-2019-8578 Use After Free vulnerability in Apple Airport Base Station Firmware
A use after free issue was addressed with improved memory management.
network
low complexity
apple CWE-416
critical
 9.8
9.8
2020-10-27 CVE-2019-8575 Unspecified vulnerability in Apple Airport Base Station Firmware
The issue was addressed with improved data deletion.
network
low complexity
apple
7.5
7.5
2020-10-27 CVE-2019-8572 NULL Pointer Dereference vulnerability in Apple Airport Base Station Firmware
A null pointer dereference was addressed with improved input validation.
network
low complexity
apple CWE-476
critical
 9.8
9.8
2020-10-27 CVE-2019-7291 Unspecified vulnerability in Apple Airport Base Station Firmware
A denial of service issue was addressed with improved memory handling.
network
low complexity
apple
6.5
6.5
2016-07-03 CVE-2015-7029 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Airport Base Station Firmware
Apple AirPort Base Station Firmware before 7.6.7 and 7.7.x before 7.7.7 misparses DNS data, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.
network
low complexity
apple CWE-119
critical
 9.8
9.8
2016-06-26 CVE-2015-7988 Unspecified vulnerability in Apple products
The handle_regservice_request function in mDNSResponder before 625.41.2 allows remote attackers to execute arbitrary code or cause a denial of service (NULL pointer dereference) via unspecified vectors.
network
low complexity
apple
critical
 9.8
9.8
2016-06-26 CVE-2015-7987 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
Multiple buffer overflows in mDNSResponder before 625.41.2 allow remote attackers to read or write to out-of-bounds memory locations via vectors involving the (1) GetValueForIPv4Addr, (2) GetValueForMACAddr, (3) rfc3110_import, or (4) CopyNSEC3ResourceRecord function.
network
low complexity
apple CWE-119
critical
 9.8
9.8