CVSS: 2.4EPSS: 0%CPEs: 1EXPL: 0CVE-2015-7080 – Apple Security Advisory 2015-12-08-1
https://notcve.org/view.php?id=CVE-2015-7080
10 Dec 2015 — Siri in Apple iOS before 9.2 allows physically proximate attackers to bypass an intended client-side protection mechanism and obtain sensitive content-notification information by listening to a device in the lock-screen state. Siri en Apple iOS en versiones anteriores a 9.2 permite a atacantes físicamente próximos eludir el mecanismo destinado a la protección del lado del cliente y obtener información de notificación de contenido sensible escuchando a un dispositivo en el estado pantalla bloqueada. iOS 9.2 ... • http://lists.apple.com/archives/security-announce/2015/Dec/msg00000.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2015-7081 – Apple Security Advisory 2015-12-08-1
https://notcve.org/view.php?id=CVE-2015-7081
10 Dec 2015 — iBooks in Apple iOS before 9.2 and OS X before 10.11.2 allows remote attackers to read arbitrary files via an iBooks file containing an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue. iBooks en Apple iOS en versiones anteriores a 9.2 y OS X en versiones anteriores a 10.11.2 permite a atacantes remotos leer archivos arbitrarios a través de un archivo de iBooks que contiene una declaración de entidad externa XML en conjunción con una refe... • http://lists.apple.com/archives/security-announce/2015/Dec/msg00000.html •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 2CVE-2015-7083 – Apple Mac OSX / iOS - NECP System Control Socket Packet Parsing Kernel Code Execution Integer Overflow
https://notcve.org/view.php?id=CVE-2015-7083
10 Dec 2015 — The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-7084. El kernel en Apple iOS en versiones anteriores a 9.2, OS X en versiones anteriores a 10.11.2, tvOS en versiones anteriores a 9.1 y watchOS en versiones anteriores a 2.1 permite a usuarios locales obtener privilegios o causar una denegación de servicio (corr... • https://packetstorm.news/files/id/135428 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 1%CPEs: 3EXPL: 0CVE-2015-7097 – Apple Security Advisory 2015-12-08-1
https://notcve.org/view.php?id=CVE-2015-7097
10 Dec 2015 — WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2015-7048, CVE-2015-7095, CVE-2015-7096, CVE-2015-7098, CVE-2015-7099, CVE-2015-7100, CVE-2015-7101, CVE-2015-7102, and CVE-2015-7103. WebKit en Apple iOS en versiones anteriores a 9.2, Safari en versiones anteriores a 9.0.2 y tvOS en versiones anteriores a 9... • http://lists.apple.com/archives/security-announce/2015/Dec/msg00000.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 1%CPEs: 3EXPL: 0CVE-2015-7098 – Gentoo Linux Security Advisory 201706-15
https://notcve.org/view.php?id=CVE-2015-7098
10 Dec 2015 — WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2015-7048, CVE-2015-7095, CVE-2015-7096, CVE-2015-7097, CVE-2015-7099, CVE-2015-7100, CVE-2015-7101, CVE-2015-7102, and CVE-2015-7103. WebKit en Apple iOS en versiones anteriores a 9.2, Safari en versiones anteriores a 9.0.2 y tvOS en versiones anteriores a 9... • http://lists.apple.com/archives/security-announce/2015/Dec/msg00000.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 1%CPEs: 3EXPL: 0CVE-2015-7099 – Apple Security Advisory 2015-12-08-1
https://notcve.org/view.php?id=CVE-2015-7099
10 Dec 2015 — WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2015-7048, CVE-2015-7095, CVE-2015-7096, CVE-2015-7097, CVE-2015-7098, CVE-2015-7100, CVE-2015-7101, CVE-2015-7102, and CVE-2015-7103. WebKit en Apple iOS en versiones anteriores a 9.2, Safari en versiones anteriores a 9.0.2 y tvOS en versiones anteriores a 9... • http://lists.apple.com/archives/security-announce/2015/Dec/msg00000.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 1%CPEs: 3EXPL: 0CVE-2015-7100 – Apple Security Advisory 2015-12-08-1
https://notcve.org/view.php?id=CVE-2015-7100
10 Dec 2015 — WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2015-7048, CVE-2015-7095, CVE-2015-7096, CVE-2015-7097, CVE-2015-7098, CVE-2015-7099, CVE-2015-7101, CVE-2015-7102, and CVE-2015-7103. WebKit en Apple iOS en versiones anteriores a 9.2, Safari en versiones anteriores a 9.0.2 y tvOS en versiones anteriores a 9... • http://lists.apple.com/archives/security-announce/2015/Dec/msg00000.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2015-7101 – Apple Security Advisory 2015-12-08-1
https://notcve.org/view.php?id=CVE-2015-7101
10 Dec 2015 — WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2015-7048, CVE-2015-7095, CVE-2015-7096, CVE-2015-7097, CVE-2015-7098, CVE-2015-7099, CVE-2015-7100, CVE-2015-7102, and CVE-2015-7103. WebKit en Apple iOS en versiones anteriores a 9.2, Safari en versiones anteriores a 9.0.2 y tvOS en versiones anteriores a 9... • http://lists.apple.com/archives/security-announce/2015/Dec/msg00000.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 17EXPL: 0CVE-2015-5312 – libxml2: CPU exhaustion when processing specially crafted XML input
https://notcve.org/view.php?id=CVE-2015-5312
07 Dec 2015 — The xmlStringLenDecodeEntities function in parser.c in libxml2 before 2.9.3 does not properly prevent entity expansion, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted XML data, a different vulnerability than CVE-2014-3660. La función xmlStringLenDecodeEntities en parser.c en libxml2 en versiones anteriores a 2.9.3 no previene adecuadamente la expansión de entidad, lo que permite a atacantes dependientes del contexto causar una denegación de servicio (cons... • http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html • CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 0%CPEs: 15EXPL: 0CVE-2015-8242 – libxml2: Buffer overread with HTML parser in push mode in xmlSAX2TextNode
https://notcve.org/view.php?id=CVE-2015-8242
07 Dec 2015 — The xmlSAX2TextNode function in SAX2.c in the push interface in the HTML parser in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service (stack-based buffer over-read and application crash) or obtain sensitive information via crafted XML data. La función xmlSAX2TextNode en SAX2.c en la interfaz push en el parser HTML en libxml2 en versiones anteriores a 2.9.3 permite a atacantes dependientes del contexto causar una denegación de servicio (sobre lectura de buffer basado en pila... • http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •