Vulnerabilities > Apple > Iphone OS > 9.3.4

DATE CVE VULNERABILITY TITLE RISK
2017-02-20 CVE-2016-4673 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
An issue was discovered in certain Apple products.
network
apple CWE-119
6.8
6.8
2017-02-20 CVE-2016-4670 Credentials Management vulnerability in Apple Iphone OS and mac OS X
An issue was discovered in certain Apple products.
local
low complexity
apple CWE-255
2.1
2.1
2017-02-20 CVE-2016-4669 Improper Input Validation vulnerability in Apple products
An issue was discovered in certain Apple products.
local
low complexity
apple CWE-20
7.2
7.2
2017-02-20 CVE-2016-4666 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Iphone OS, Safari and Tvos
An issue was discovered in certain Apple products.
network
apple CWE-119
6.8
6.8
2017-02-20 CVE-2016-4665 Information Exposure vulnerability in Apple Iphone OS, Tvos and Watchos
An issue was discovered in certain Apple products.
network
apple CWE-200
4.3
4.3
2017-02-20 CVE-2016-4664 Information Exposure vulnerability in Apple Iphone OS, Tvos and Watchos
An issue was discovered in certain Apple products.
network
apple CWE-200
4.3
4.3
2017-02-20 CVE-2016-4660 Information Exposure vulnerability in Apple products
An issue was discovered in certain Apple products.
network
apple CWE-200
5.8
5.8
2016-09-25 CVE-2016-4778 Permissions, Privileges, and Access Controls vulnerability in Apple products
The kernel in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
network
apple CWE-264
critical
 9.3
9.3
2016-09-25 CVE-2016-4777 Permissions, Privileges, and Access Controls vulnerability in Apple products
The kernel in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (invalid pointer dereference) via a crafted app.
network
apple CWE-264
critical
 9.3
9.3
2016-09-25 CVE-2016-4776 Out-of-bounds Read vulnerability in Apple products
The kernel in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows attackers to obtain sensitive memory-layout information or cause a denial of service (out-of-bounds read) via a crafted app, a different vulnerability than CVE-2016-4773 and CVE-2016-4774.
network
apple CWE-125
5.8
5.8