Vulnerabilities > Apple > Watchos > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-02-20 CVE-2016-7615 Unspecified vulnerability in Apple Iphone OS
An issue was discovered in certain Apple products.
local
low complexity
apple
5.5
5.5
2017-02-20 CVE-2016-7607 Information Exposure vulnerability in Apple Iphone OS
An issue was discovered in certain Apple products.
local
low complexity
apple CWE-200
5.5
5.5
2017-02-20 CVE-2016-7591 Use After Free vulnerability in Apple Iphone OS
An issue was discovered in certain Apple products.
local
low complexity
apple CWE-416
6.5
6.5
2017-02-20 CVE-2016-4680 Information Exposure vulnerability in Apple Iphone OS
An issue was discovered in certain Apple products.
local
low complexity
apple CWE-200
5.5
5.5
2017-02-20 CVE-2016-4679 Link Following vulnerability in Apple products
An issue was discovered in certain Apple products.
local
low complexity
apple CWE-59
5.5
5.5
2016-09-25 CVE-2016-4718 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
Buffer overflow in FontParser in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows remote attackers to obtain sensitive information from process memory via a crafted font file.
network
low complexity
apple CWE-119
6.5
6.5
2016-09-25 CVE-2016-4708 Information Exposure vulnerability in Apple products
CFNetwork in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 misparses the Set-Cookie header, which allows remote attackers to obtain sensitive information via a crafted HTTP response.
network
low complexity
apple CWE-200
6.5
6.5
2016-09-18 CVE-2016-4719 Information Exposure vulnerability in Apple Iphone OS and Watchos
The GeoServices component in Apple iOS before 10 and watchOS before 3 does not properly restrict access to PlaceData information, which allows attackers to discover physical locations via a crafted application.
local
low complexity
apple CWE-200
5.5
5.5
2016-07-22 CVE-2016-4628 Out-of-bounds Read vulnerability in Apple Iphone OS and Watchos
IOAcceleratorFamily in Apple iOS before 9.3.3 and watchOS before 2.2.2 allows local users to obtain sensitive information from kernel memory or cause a denial of service (out-of-bounds read) via unspecified vectors.
local
low complexity
apple CWE-125
5.5
5.5
2016-07-22 CVE-2016-1865 NULL Pointer Dereference vulnerability in Apple products
The kernel in Apple iOS before 9.3.3, OS X before 10.11.6, tvOS before 9.2.2, and watchOS before 2.2.2 allows local users to cause a denial of service (NULL pointer dereference) via unspecified vectors.
local
low complexity
apple CWE-476
5.5
5.5