Vulnerabilities > Apple

DATE CVE VULNERABILITY TITLE RISK
2016-07-22 CVE-2016-4639 Unspecified vulnerability in Apple mac OS X
Login Window in Apple OS X before 10.11.6 does not properly initialize memory, which allows local users to cause a denial of service via unspecified vectors.
local
high complexity
apple
7.0
2016-07-22 CVE-2016-4638 Permissions, Privileges, and Access Controls vulnerability in Apple mac OS X
Login Window in Apple OS X before 10.11.6 allows attackers to gain privileges via a crafted app that leverages a "type confusion."
local
low complexity
apple CWE-264
7.8
2016-07-22 CVE-2016-4637 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
CoreGraphics in Apple iOS before 9.3.3, OS X before 10.11.6, tvOS before 9.2.2, and watchOS before 2.2.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted BMP image.
network
low complexity
apple CWE-119
8.8
2016-07-22 CVE-2016-4635 Information Exposure vulnerability in Apple Iphone OS
FaceTime in Apple iOS before 9.3.3 and OS X before 10.11.6 allows man-in-the-middle attackers to spoof relayed-call termination, and obtain sensitive audio information in opportunistic circumstances, via unspecified vectors.
network
high complexity
apple CWE-200
5.3
2016-07-22 CVE-2016-4634 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple mac OS X
The Graphics Drivers subsystem in Apple OS X before 10.11.6 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors.
local
low complexity
apple CWE-119
7.8
2016-07-22 CVE-2016-4633 Permissions, Privileges, and Access Controls vulnerability in Apple mac OS X
Intel Graphics Driver in Apple OS X before 10.11.6 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
local
low complexity
apple CWE-264
7.8
2016-07-22 CVE-2016-4632 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
ImageIO in Apple iOS before 9.3.3, OS X before 10.11.6, tvOS before 9.2.2, and watchOS before 2.2.2 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors.
network
low complexity
apple CWE-119
7.5
2016-07-22 CVE-2016-4631 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
ImageIO in Apple iOS before 9.3.3, OS X before 10.11.6, tvOS before 9.2.2, and watchOS before 2.2.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted TIFF file.
network
low complexity
apple CWE-119
8.8
2016-07-22 CVE-2016-4630 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple mac OS X
ImageIO in Apple OS X before 10.11.6 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted EXR image with B44 compression.
network
low complexity
apple CWE-119
8.8
2016-07-22 CVE-2016-4629 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple mac OS X
ImageIO in Apple OS X before 10.11.6 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted xStride and yStride values in an EXR image.
network
low complexity
apple CWE-119
critical
9.8