Vulnerabilities > Apple
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-09-25 | CVE-2016-4729 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Safari WebKit in Apple iOS before 10 and Safari before 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2016-4731. | 8.8 |
| 2016-09-25 | CVE-2016-4728 | Improper Input Validation vulnerability in Apple products WebKit in Apple iOS before 10, tvOS before 10, iTunes before 12.5.1 on Windows, and Safari before 10 mishandles error prototypes, which allows remote attackers to execute arbitrary code via a crafted web site. | 8.8 |
| 2016-09-25 | CVE-2016-4727 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple mac OS X IOThunderboltFamily in Apple OS X before 10.12 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app. | 7.8 |
| 2016-09-25 | CVE-2016-4726 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products IOAcceleratorFamily in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app. | 7.8 |
| 2016-09-25 | CVE-2016-4725 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products IOAcceleratorFamily in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (memory corruption) via a crafted web site. | 8.1 |
| 2016-09-25 | CVE-2016-4724 | NULL Pointer Dereference vulnerability in Apple Iphone OS IOAcceleratorFamily in Apple iOS before 10 and OS X before 10.12 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via a crafted app. | 7.8 |
| 2016-09-25 | CVE-2016-4723 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple mac OS X Intel Graphics Driver in Apple OS X before 10.12 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app. | 7.8 |
| 2016-09-25 | CVE-2016-4722 | Improper Input Validation vulnerability in Apple Iphone OS The IDS - Connectivity component in Apple iOS before 10 and OS X before 10.12 allows man-in-the-middle attackers to conduct Call Relay spoofing attacks and cause a denial of service via unspecified vectors. | 5.9 |
| 2016-09-25 | CVE-2016-4718 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products Buffer overflow in FontParser in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows remote attackers to obtain sensitive information from process memory via a crafted font file. | 6.5 |
| 2016-09-25 | CVE-2016-4717 | Unspecified vulnerability in Apple mac OS X The File Bookmark component in Apple OS X before 10.12 mishandles scoped-bookmark file descriptors, which allows attackers to cause a denial of service via a crafted app. | 3.3 |