CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 0CVE-2016-7638 – Apple Security Advisory 2016-12-12-1
https://notcve.org/view.php?id=CVE-2016-7638
12 Dec 2016 — An issue was discovered in certain Apple products. iOS before 10.2 is affected. The issue involves the "Find My iPhone" component, which allows physically proximate attackers to disable this component by bypassing authentication. Se ha descubierto un problema en ciertos productos Apple. iOS en versiones anteriores a 10.2 está afectado. El problema involucra al componente "Find My iPhone", que permite a atacantes próximos físicamente deshabilitar este componente eludiendo la autenticación. This advisory prov... • http://www.securityfocus.com/bid/94850 • CWE-254: 7PK - Security Features •
CVSS: 8.8EPSS: 24%CPEs: 3EXPL: 2CVE-2016-7626 – iOS 10.1.x - Certificate File Memory Corruption
https://notcve.org/view.php?id=CVE-2016-7626
12 Dec 2016 — An issue was discovered in certain Apple products. iOS before 10.2 is affected. tvOS before 10.1 is affected. watchOS before 3.1.1 is affected. The issue involves the "Profiles" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted certificate profile. Se ha descubierto un problema en ciertos productos Apple. iOS en versiones anteriores a 10.2 está afectado. tvOS en versiones anteriores a 10.1 está afectado. watch... • https://packetstorm.news/files/id/140111 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-4689 – Apple Security Advisory 2016-12-12-1
https://notcve.org/view.php?id=CVE-2016-4689
12 Dec 2016 — An issue was discovered in certain Apple products. iOS before 10.2 is affected. The issue involves the "Mail" component, which does not alert the user to an S/MIME email signature that used a revoked certificate. Se ha descubierto un problema en ciertos productos Apple. iOS en versiones anteriores a 10.2 está afectado. El problema involucra el componente "Mail", que no alerta al usuario de una firma de correo electrónico S/MIME que utiliza un certificado revocado. This advisory provides additional informati... • http://www.securityfocus.com/bid/94850 • CWE-254: 7PK - Security Features •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2016-7651 – Apple Security Advisory 2016-12-12-1
https://notcve.org/view.php?id=CVE-2016-7651
12 Dec 2016 — An issue was discovered in certain Apple products. iOS before 10.2 is affected. watchOS before 3.1.1 is affected. The issue involves the "Accounts" component, which allows local users to bypass intended authorization restrictions by leveraging the mishandling of an app uninstall. Se ha descubierto un problema en ciertos productos Apple. iOS en versiones anteriores a 10.2 está afectado. watchOS en versiones anteriores a 3.1.1 está afectado. El problema involucra al componente "Accounts", que permite a usuari... • http://www.securityfocus.com/bid/94851 • CWE-285: Improper Authorization •
CVSS: 2.4EPSS: 0%CPEs: 1EXPL: 0CVE-2016-7653 – Apple Security Advisory 2016-12-12-1
https://notcve.org/view.php?id=CVE-2016-7653
12 Dec 2016 — An issue was discovered in certain Apple products. iOS before 10.2 is affected. The issue involves the "Media Player" component, which allows physically proximate attackers to obtain sensitive photo and contact information by leveraging lockscreen access. Se ha descubierto un problema en ciertos productos Apple. iOS en versiones anteriores a 10.2 está afectado. El problema involucra al componente "Media Player" que permite a atacantes próximos físicamente obtener fotos e información de contacto sensibles ap... • http://www.securityfocus.com/bid/94850 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 2.4EPSS: 0%CPEs: 1EXPL: 0CVE-2016-7664 – Apple Security Advisory 2016-12-12-1
https://notcve.org/view.php?id=CVE-2016-7664
12 Dec 2016 — An issue was discovered in certain Apple products. iOS before 10.2 is affected. The issue involves the "Accessibility" component. which allows physically proximate attackers to obtain sensitive photo and contact information by leveraging the availability of excessive options during lockscreen access. Se ha descubierto un problema en ciertos productos Apple. iOS en versiones anteriores a 10.2 está afectado. El problema involucra al componente "Accesibilidad" lo que permite a atacantes próximos físicamente ob... • http://www.securityfocus.com/bid/94850 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 0CVE-2016-7634 – Apple Security Advisory 2016-12-12-1
https://notcve.org/view.php?id=CVE-2016-7634
12 Dec 2016 — An issue was discovered in certain Apple products. iOS before 10.2 is affected. The issue involves the "Accessibility" component, which accepts spoken passwords without considering that they are locally audible. Se ha descubierto un problema en ciertos productos Apple. iOS en versiones anteriores a 10.2 está afectado. El problema involucra al componente "Accessibility", que acepta contraseñas habladas sin considerar que son localmente audibles. This advisory provides additional information in regards to iOS... • http://www.securityfocus.com/bid/94850 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 0CVE-2016-7597 – Apple Security Advisory 2016-12-12-1
https://notcve.org/view.php?id=CVE-2016-7597
12 Dec 2016 — An issue was discovered in certain Apple products. iOS before 10.2 is affected. The issue involves the "SpringBoard" component, which allows physically proximate attackers to maintain the unlocked state via vectors related to Handoff with Siri. Se ha descubierto un problema en ciertos productos Apple. iOS en versiones anteriores a 10.2 está afectado. El problema involucra al componente "SpringBoard", que permite a atacantes próximos físicamente mantener el estado desbloqueado a través de vectores relacionad... • http://www.securityfocus.com/bid/94850 • CWE-254: 7PK - Security Features •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-7601 – Apple Security Advisory 2016-12-12-1
https://notcve.org/view.php?id=CVE-2016-7601
12 Dec 2016 — An issue was discovered in certain Apple products. iOS before 10.2 is affected. The issue involves the "Local Authentication" component, which does not honor the configured screen-lock time interval if the Touch ID prompt is visible. Se ha descubierto un problema en ciertos productos Apple. iOS en versiones anteriores a 10.2 está afectado. El problema involucra al componente "Local Authentication", que no respeta el intervalo de tiempo de bloqueo de pantalla configurado si el indicador de ID de toque está v... • http://www.securityfocus.com/bid/94850 • CWE-254: 7PK - Security Features •
CVSS: 8.8EPSS: 0%CPEs: 5EXPL: 0CVE-2016-7578 – Ubuntu Security Notice USN-3166-1
https://notcve.org/view.php?id=CVE-2016-7578
28 Oct 2016 — An issue was discovered in certain Apple products. iOS before 10.1 is affected. Safari before 10.0.1 is affected. iCloud before 6.0.1 is affected. iTunes before 12.5.2 is affected. tvOS before 10.0.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Se ha descubierto un problema en ciertos productos Apple. iOS en versiones anteriores a 10.1 está afectado. • http://www.securityfocus.com/bid/93949 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •