Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In September 2016
CVE-2016-4724
IOAcceleratorFamily in Apple iOS before 10 and OS X before 10.12 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via a crafted app.
CVSS Score
7.8
EPSS Score
0.002
Published
2016-09-25
CVE-2016-4723
Intel Graphics Driver in Apple OS X before 10.12 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
CVSS Score
7.8
EPSS Score
0.004
Published
2016-09-25
CVE-2016-4722
The IDS - Connectivity component in Apple iOS before 10 and OS X before 10.12 allows man-in-the-middle attackers to conduct Call Relay spoofing attacks and cause a denial of service via unspecified vectors.
CVSS Score
5.9
EPSS Score
0.025
Published
2016-09-25
CVE-2016-4718
Buffer overflow in FontParser in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows remote attackers to obtain sensitive information from process memory via a crafted font file.
CVSS Score
6.5
EPSS Score
0.023
Published
2016-09-25
CVE-2016-4717
The File Bookmark component in Apple OS X before 10.12 mishandles scoped-bookmark file descriptors, which allows attackers to cause a denial of service via a crafted app.
CVSS Score
3.3
EPSS Score
0.003
Published
2016-09-25
CVE-2016-4716
diskutil in DiskArbitration in Apple OS X before 10.12 allows local users to gain privileges via unspecified vectors.
CVSS Score
7.8
EPSS Score
0.001
Published
2016-09-25
CVE-2016-4715
The Date & Time Pref Pane component in Apple OS X before 10.12 mishandles the .GlobalPreferences file, which allows attackers to discover a user's location via a crafted app.
CVSS Score
3.3
EPSS Score
0.003
Published
2016-09-25
CVE-2016-4713
CoreDisplay in Apple OS X before 10.12 allows attackers to view arbitrary users' screens by leveraging screen-sharing access.
CVSS Score
5.3
EPSS Score
0.004
Published
2016-09-25
CVE-2016-4712
CoreCrypto in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows attackers to execute arbitrary code or cause a denial of service (out-of-bounds write) via a crafted app.
CVSS Score
7.8
EPSS Score
0.003
Published
2016-09-25
CVE-2016-4711
CCrypt in corecrypto in CommonCrypto in Apple iOS before 10 and OS X before 10.12 allows attackers to discover cleartext information by leveraging a function call that specifies the same buffer for input and output.
CVSS Score
7.5
EPSS Score
0.005
Published
2016-09-25


Products
Pricing
Contact Us

Shodan ® - All rights reserved