CVSS: 5.5EPSS: 3%CPEs: 3EXPL: 0CVE-2015-5840 – Apple Security Advisory 2015-09-16-1
https://notcve.org/view.php?id=CVE-2015-5840
18 Sep 2015 — The checkint division routines in removefile in Apple iOS before 9 allow attackers to cause a denial of service (overflow fault and app crash) via crafted data. Vulnerabilidad en las rutinas de división checkint en removefile en Apple iOS en versiones anteriores a 9, permite a atacantes causar una denegación de servicio (fallo de desbordamiento y caída de la aplicación) a través de datos manipulados. OS X El Capitan 10.11 is now available and addresses close to 100 vulnerabilities that may exist in prior re... • http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.1EPSS: 0%CPEs: 3EXPL: 0CVE-2015-5841 – Apple Security Advisory 2015-09-16-1
https://notcve.org/view.php?id=CVE-2015-5841
18 Sep 2015 — The CFNetwork Proxies component in Apple iOS before 9 does not properly handle a Set-Cookie header within a response to an HTTP CONNECT request, which allows remote proxy servers to conduct cookie-injection attacks via a crafted response. Vulnerabilidad en el componente CFNetwork Proxies en Apple iOS en versiones anteriores a 9, no maneja correctamente una cabecera Set-Cookie en una respuesta en una petición HTTP CONNECT, lo que permite a servidores proxy remotos realizar un ataque de cookie-injection a tra... • http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •
CVSS: 3.3EPSS: 0%CPEs: 3EXPL: 0CVE-2015-5842 – Apple Security Advisory 2015-09-16-1
https://notcve.org/view.php?id=CVE-2015-5842
18 Sep 2015 — XNU in the kernel in Apple iOS before 9 does not properly initialize an unspecified data structure, which allows local users to obtain sensitive memory-layout information via unknown vectors. Vulnerabilidad en XNU en el kernel en Apple iOS en versiones anteriores a 9, no inicializa adecuadamente una estructura de datos no especificada, lo que permite a usuarios locales obtener información sensible de la estructura de memoria a través de vectores desconocidos. OS X El Capitan 10.11 is now available and addre... • http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2015-5843 – Apple Security Advisory 2015-09-16-1
https://notcve.org/view.php?id=CVE-2015-5843
18 Sep 2015 — IOMobileFrameBuffer in Apple iOS before 9 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors. Vulnerabilidad en IOMobileFrameBuffer en Apple iOS en versiones anteriores a 9, permite a usuarios locales obtener privilegios o causar una denegación de servicio (corrupción de memoria) a través de vectores no especificados. iOS 9 is now available and addresses denial of service, information disclosure, and various other issues. • http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 0CVE-2015-5844 – Apple Security Advisory 2015-09-16-1
https://notcve.org/view.php?id=CVE-2015-5844
18 Sep 2015 — IOKit in the kernel in Apple iOS before 9 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2015-5845 and CVE-2015-5846. Vulnerabilidad en IOKit en el kernel en Apple iOS en versiones anteriores a 9, permite a atacantes ejecutar código arbitrario en un contexto privilegiado o causar una denegación de servicio (corrupción de memoria) a través de una aplicación manipulada, una vulnerabilidad... • http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 0CVE-2015-5845 – Apple Security Advisory 2015-09-16-1
https://notcve.org/view.php?id=CVE-2015-5845
18 Sep 2015 — IOKit in the kernel in Apple iOS before 9 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2015-5844 and CVE-2015-5846. Vulnerabilidad en IOKit en el kernel en Apple iOS en versiones anteriores a 9, permite a atacantes ejecutar código arbitrario en un contexto privilegiado o causar un a denegación de servicio (corrupción de memoria) a través de una aplicación manipulada, una vulnerabilida... • http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 0CVE-2015-5846 – Apple Security Advisory 2015-09-16-1
https://notcve.org/view.php?id=CVE-2015-5846
18 Sep 2015 — IOKit in the kernel in Apple iOS before 9 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2015-5844 and CVE-2015-5845. Vulnerabilidad en IOKit en el kernel en Apple iOS en versiones anteriores a 9, permite a atacantes ejecutar código arbitrario en un contexto privilegiado o causar una denegación de servicio (corrupción de memoria) a través de una aplicación manipulada, una vulnerabilidad... • http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2015-5847 – Apple Security Advisory 2015-09-16-1
https://notcve.org/view.php?id=CVE-2015-5847
18 Sep 2015 — The Disk Images component in Apple iOS before 9 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors. Vulnerabilidad en el componente Disk Images en Apple iOS en versiones anteriores a 9, permite a usuarios locales ganar privilegios o causar una denegación de servicio (corrupción de memoria) a través de vectores no especificados. OS X El Capitan 10.11 is now available and addresses close to 100 vulnerabilities that may exist in prior releases. • http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2015-5848 – Apple Security Advisory 2015-09-16-1
https://notcve.org/view.php?id=CVE-2015-5848
18 Sep 2015 — IOAcceleratorFamily in Apple iOS before 9 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors. Vulnerabilidad en IOAcceleratorFamily en Apple iOS en versiones anteriores a 9, permite a usuarios locales ganar privilegios o causar una denegación de servicio (corrupción de memoria) a través de vectores no especificados. iOS 9 is now available and addresses denial of service, information disclosure, and various other issues. • http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2015-5855 – Apple Security Advisory 2015-09-16-1
https://notcve.org/view.php?id=CVE-2015-5855
18 Sep 2015 — Apple iOS before 9 allows attackers to discover the e-mail address of a player via a crafted Game Center app. Vulnerabilidad en Apple iOS en versiones anteriores a 9, permite a atacantes descubrir las direcciones de e-mail de un jugador a través de una aplicación del Game Center manipulada. OS X El Capitan 10.11 is now available and addresses close to 100 vulnerabilities that may exist in prior releases. • http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •