CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2015-5812 – Apple Security Advisory 2015-09-16-3
https://notcve.org/view.php?id=CVE-2015-5812
18 Sep 2015 — WebKit, as used in Apple iOS before 9 and iTunes before 12.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2015-09-16-1 and APPLE-SA-2015-09-16-3. Vulnerabilidad en WebKit, tal como se utiliza en Apple iOS en versiones anteriores a 9 y iTunes en versiones anteriores a 12.3, permite a atacantes remotos ejecutar código arbitrario o causar una d... • http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2015-5813 – Apple Security Advisory 2015-09-16-3
https://notcve.org/view.php?id=CVE-2015-5813
18 Sep 2015 — WebKit, as used in Apple iOS before 9 and iTunes before 12.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2015-09-16-1 and APPLE-SA-2015-09-16-3. Vulnerabilidad en WebKit, tal como se utiliza en Apple iOS en versiones anteriores a 9 y iTunes en versiones anteriores a 12.3, permite a atacantes remotos ejecutar código arbitrario o causar una d... • http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2015-5880 – Apple Security Advisory 2015-09-16-1
https://notcve.org/view.php?id=CVE-2015-5880
18 Sep 2015 — CoreAnimation in Apple iOS before 9 allows attackers to bypass intended IOSurface restrictions and obtain screen-framebuffer access via a crafted background app. Vulnerabilidad en CoreAnimation en Apple iOS en versiones anteriores a 9, permite a atacantes eludir las restricciones destinadas a IOSurface y obtener acceso a screen-framebuffer a través de una aplicación en segundo plano manipulada. iOS 9 is now available and addresses denial of service, information disclosure, and various other issues. • http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2015-5882 – Apple Security Advisory 2015-09-16-1
https://notcve.org/view.php?id=CVE-2015-5882
18 Sep 2015 — The processor_set_tasks API implementation in Apple iOS before 9 allows local users to bypass an entitlement protection mechanism and obtain access to the task ports of arbitrary processes by leveraging root privileges. Vulnerabilidad en la implementación processor_set_tasks API en Apple iOS en versiones anteriores a 9, permite a usuarios locales eludir el mecanismo de protección de derechos y obtener acceso a los puertos de tareas de procesos arbitrarios mediante el aprovechamiento de los privilegios de ro... • http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html • CWE-284: Improper Access Control •
CVSS: 5.3EPSS: 1%CPEs: 3EXPL: 0CVE-2015-5885 – Apple Security Advisory 2015-09-16-1
https://notcve.org/view.php?id=CVE-2015-5885
18 Sep 2015 — The CFNetwork Cookies component in Apple iOS before 9 allows remote attackers to track users via vectors involving a cookie for a top-level domain. Vulnerabilidad en el componente CFNetwork Cookies en Apple iOS en versiones anteriores a 9, permite a atacantes remotos rastrear usuarios a través de vectores que involucran una cookie para un dominio top-level. OS X El Capitan 10.11 is now available and addresses close to 100 vulnerabilities that may exist in prior releases. • http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 2.4EPSS: 0%CPEs: 1EXPL: 0CVE-2015-5892 – Apple Security Advisory 2015-09-16-1
https://notcve.org/view.php?id=CVE-2015-5892
18 Sep 2015 — Siri in Apple iOS before 9 allows physically proximate attackers to bypass an intended client-side protection mechanism and obtain sensitive content-notification information by listening to a device in the lock-screen state. Vulnerabilidad en Siri en Apple iOS en versiones anteriores a 9, permite a atacantes físicamente próximos eludir el mecanismo destinado a la protección del lado del cliente y obtener información sensible de notificación de contenido mediante la escucha de un dispositivo en el estado de ... • http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 10.0EPSS: 10%CPEs: 2EXPL: 1CVE-2015-5895 – SQLite3 3.8.6 - Controlled Memory Corruption (PoC)
https://notcve.org/view.php?id=CVE-2015-5895
18 Sep 2015 — Multiple unspecified vulnerabilities in SQLite before 3.8.10.2, as used in Apple iOS before 9, have unknown impact and attack vectors. Múltiples vulnerabilidades no especificadas en SQLite en versiones anteriores a 3.8.10.2, tal como se utiliza en Apple iOS en versiones anteriores a 9, tiene un impacto y vectores de ataque desconocidos. iOS 9 is now available and addresses denial of service, information disclosure, and various other issues. • https://www.exploit-db.com/exploits/36190 •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2015-5896 – Apple Security Advisory 2015-09-16-1
https://notcve.org/view.php?id=CVE-2015-5896
18 Sep 2015 — The kernel in Apple iOS before 9 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-5868 and CVE-2015-5903. Vulnerabilidad en el kernel en Apple iOS en versiones anteriores a 9, permite a usuarios locales obtener privilegios o causar una denegación de servicio (corrupción de memoria) a través de vectores no especificados, una vulnerabilidad diferente a CVE-2015-5868 y CVE-2015-5903. OS X El Capitan 10.11 is ... • http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 4.6EPSS: 0%CPEs: 2EXPL: 0CVE-2015-5898 – Apple Security Advisory 2015-09-16-1
https://notcve.org/view.php?id=CVE-2015-5898
18 Sep 2015 — CFNetwork in Apple iOS before 9 relies on the hardware UID for its cache encryption key, which makes it easier for physically proximate attackers to obtain sensitive information by obtaining this UID. Vulnerabilidad en CFNetwork en Apple iOS en versiones anteriores a 9, confía en el UID de hardware para su clave de cifrado caché, lo que facilita a atacantes físicamente próximos obtener información sensible mediante la obtención de este UID . iOS 9 is now available and addresses denial of service, informatio... • http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2015-5899 – Apple Security Advisory 2015-09-16-1
https://notcve.org/view.php?id=CVE-2015-5899
18 Sep 2015 — libpthread in the kernel in Apple iOS before 9 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors. Vulnerabilidad en libpthread en el kernel en Apple iOS en versiones anteriores a 9, permite a usuarios locales obtener privilegios o causar una denegación de servicio (corrupción de memoria) a través de vectores no especificados. OS X El Capitan 10.11 is now available and addresses close to 100 vulnerabilities that may exist in prior releases. • http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •