CVSS: 8.8EPSS: 1%CPEs: 3EXPL: 0CVE-2015-7074 – Apple Security Advisory 2015-12-08-1
https://notcve.org/view.php?id=CVE-2015-7074
10 Dec 2015 — CoreMedia Playback in Apple iOS before 9.2, OS X before 10.11.2, and tvOS before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a malformed media file. CoreMedia Playback en Apple iOS en versiones anteriores a 9.2, OS X en versiones anteriores a 10.11.2 y tvOS en versiones anteriores a 9.1 permite a atacantes remotos ejecutar código arbitrario o provocar una denegación de servicio (corrupción de memoria) a través de un archivo multimedia mal formad... • http://lists.apple.com/archives/security-announce/2015/Dec/msg00000.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 1%CPEs: 4EXPL: 0CVE-2015-7075 – Apple Security Advisory 2015-12-08-1
https://notcve.org/view.php?id=CVE-2015-7075
10 Dec 2015 — CoreMedia Playback in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a malformed media file. CoreMedia Playback en Apple iOS en versiones anteriores a 9.2, OS X en versiones anteriores a 10.11.2, tvOS en versiones anteriores a 9.1 y watchOS en versiones anteriores a 2.1 permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (corrupción... • http://lists.apple.com/archives/security-announce/2015/Dec/msg00000.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 0CVE-2015-7079 – Apple Security Advisory 2015-12-08-1
https://notcve.org/view.php?id=CVE-2015-7079
10 Dec 2015 — dyld in Apple iOS before 9.2 and tvOS before 9.1 mishandles segment validation, which allows attackers to execute arbitrary code in a privileged context via a crafted app. dyld en Apple iOS en versiones anteriores a 9.2 y tvOS en versiones anteriores a 9.1 no maneja correctamente la validación de segmentos, lo que permite a atacantes ejecutar código arbitrario en un contexto privilegiado a través de una aplicación manipulada. iOS 9.2 is now available and addresses at least 50 security vulnerabilities. • http://lists.apple.com/archives/security-announce/2015/Dec/msg00000.html • CWE-20: Improper Input Validation •
CVSS: 2.4EPSS: 0%CPEs: 1EXPL: 0CVE-2015-7080 – Apple Security Advisory 2015-12-08-1
https://notcve.org/view.php?id=CVE-2015-7080
10 Dec 2015 — Siri in Apple iOS before 9.2 allows physically proximate attackers to bypass an intended client-side protection mechanism and obtain sensitive content-notification information by listening to a device in the lock-screen state. Siri en Apple iOS en versiones anteriores a 9.2 permite a atacantes físicamente próximos eludir el mecanismo destinado a la protección del lado del cliente y obtener información de notificación de contenido sensible escuchando a un dispositivo en el estado pantalla bloqueada. iOS 9.2 ... • http://lists.apple.com/archives/security-announce/2015/Dec/msg00000.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2015-7081 – Apple Security Advisory 2015-12-08-1
https://notcve.org/view.php?id=CVE-2015-7081
10 Dec 2015 — iBooks in Apple iOS before 9.2 and OS X before 10.11.2 allows remote attackers to read arbitrary files via an iBooks file containing an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue. iBooks en Apple iOS en versiones anteriores a 9.2 y OS X en versiones anteriores a 10.11.2 permite a atacantes remotos leer archivos arbitrarios a través de un archivo de iBooks que contiene una declaración de entidad externa XML en conjunción con una refe... • http://lists.apple.com/archives/security-announce/2015/Dec/msg00000.html •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 2CVE-2015-7083 – Apple Mac OSX / iOS - NECP System Control Socket Packet Parsing Kernel Code Execution Integer Overflow
https://notcve.org/view.php?id=CVE-2015-7083
10 Dec 2015 — The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-7084. El kernel en Apple iOS en versiones anteriores a 9.2, OS X en versiones anteriores a 10.11.2, tvOS en versiones anteriores a 9.1 y watchOS en versiones anteriores a 2.1 permite a usuarios locales obtener privilegios o causar una denegación de servicio (corr... • https://packetstorm.news/files/id/135428 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 1%CPEs: 3EXPL: 0CVE-2015-7097 – Apple Security Advisory 2015-12-08-1
https://notcve.org/view.php?id=CVE-2015-7097
10 Dec 2015 — WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2015-7048, CVE-2015-7095, CVE-2015-7096, CVE-2015-7098, CVE-2015-7099, CVE-2015-7100, CVE-2015-7101, CVE-2015-7102, and CVE-2015-7103. WebKit en Apple iOS en versiones anteriores a 9.2, Safari en versiones anteriores a 9.0.2 y tvOS en versiones anteriores a 9... • http://lists.apple.com/archives/security-announce/2015/Dec/msg00000.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 1%CPEs: 3EXPL: 0CVE-2015-7098 – Gentoo Linux Security Advisory 201706-15
https://notcve.org/view.php?id=CVE-2015-7098
10 Dec 2015 — WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2015-7048, CVE-2015-7095, CVE-2015-7096, CVE-2015-7097, CVE-2015-7099, CVE-2015-7100, CVE-2015-7101, CVE-2015-7102, and CVE-2015-7103. WebKit en Apple iOS en versiones anteriores a 9.2, Safari en versiones anteriores a 9.0.2 y tvOS en versiones anteriores a 9... • http://lists.apple.com/archives/security-announce/2015/Dec/msg00000.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 1%CPEs: 3EXPL: 0CVE-2015-7099 – Apple Security Advisory 2015-12-08-1
https://notcve.org/view.php?id=CVE-2015-7099
10 Dec 2015 — WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2015-7048, CVE-2015-7095, CVE-2015-7096, CVE-2015-7097, CVE-2015-7098, CVE-2015-7100, CVE-2015-7101, CVE-2015-7102, and CVE-2015-7103. WebKit en Apple iOS en versiones anteriores a 9.2, Safari en versiones anteriores a 9.0.2 y tvOS en versiones anteriores a 9... • http://lists.apple.com/archives/security-announce/2015/Dec/msg00000.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 1%CPEs: 3EXPL: 0CVE-2015-7100 – Apple Security Advisory 2015-12-08-1
https://notcve.org/view.php?id=CVE-2015-7100
10 Dec 2015 — WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2015-7048, CVE-2015-7095, CVE-2015-7096, CVE-2015-7097, CVE-2015-7098, CVE-2015-7099, CVE-2015-7101, CVE-2015-7102, and CVE-2015-7103. WebKit en Apple iOS en versiones anteriores a 9.2, Safari en versiones anteriores a 9.0.2 y tvOS en versiones anteriores a 9... • http://lists.apple.com/archives/security-announce/2015/Dec/msg00000.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •