CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-4689
https://notcve.org/view.php?id=CVE-2016-4689
An issue was discovered in certain Apple products. iOS before 10.2 is affected. The issue involves the "Mail" component, which does not alert the user to an S/MIME email signature that used a revoked certificate. Se ha descubierto un problema en ciertos productos Apple. iOS en versiones anteriores a 10.2 está afectado. El problema involucra el componente "Mail", que no alerta al usuario de una firma de correo electrónico S/MIME que utiliza un certificado revocado. • http://www.securityfocus.com/bid/94850 http://www.securitytracker.com/id/1037429 https://support.apple.com/HT207422 • CWE-254: 7PK - Security Features •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-4690
https://notcve.org/view.php?id=CVE-2016-4690
An issue was discovered in certain Apple products. iOS before 10.2 is affected. The issue involves the "Image Capture" component, which allows attackers to execute arbitrary code via a crafted USB HID device. Se ha descubierto un problema en ciertos productos Apple. iOS en versiones anteriores a 10.2 está afectado. El problema involucra al componente "Image Capture", que permite a atacantes ejecutar código arbitrario a través de un dispositivo USB HID. • http://www.securityfocus.com/bid/94850 http://www.securitytracker.com/id/1037429 https://support.apple.com/HT207422 • CWE-20: Improper Input Validation •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-4781
https://notcve.org/view.php?id=CVE-2016-4781
An issue was discovered in certain Apple products. iOS before 10.2 is affected. The issue involves the "SpringBoard" component, which allows physically proximate attackers to bypass the passcode attempt counter and unlock a device via unspecified vectors. Se ha descubierto un problema en ciertos productos Apple. iOS en versiones anteriores a 10.2 está afectado. El problema involucra al componente "SpringBoard", que permite a atacantes próximos físicamente eludir el contador de intentos de código de acceso y desbloquear un dispositivo a través de vectores no especificados. • http://www.securityfocus.com/bid/94850 http://www.securitytracker.com/id/1037429 https://support.apple.com/HT207422 • CWE-254: 7PK - Security Features •
CVSS: 2.4EPSS: 0%CPEs: 1EXPL: 0CVE-2016-7664
https://notcve.org/view.php?id=CVE-2016-7664
An issue was discovered in certain Apple products. iOS before 10.2 is affected. The issue involves the "Accessibility" component. which allows physically proximate attackers to obtain sensitive photo and contact information by leveraging the availability of excessive options during lockscreen access. Se ha descubierto un problema en ciertos productos Apple. iOS en versiones anteriores a 10.2 está afectado. El problema involucra al componente "Accesibilidad" lo que permite a atacantes próximos físicamente obtener fotos e información de contacto sensibles aprovechando la disponibilidad de excesivas opciones durante el acceso de bloqueo de pantalla. • http://www.securityfocus.com/bid/94850 http://www.securitytracker.com/id/1037429 https://support.apple.com/HT207422 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 0CVE-2016-7597
https://notcve.org/view.php?id=CVE-2016-7597
An issue was discovered in certain Apple products. iOS before 10.2 is affected. The issue involves the "SpringBoard" component, which allows physically proximate attackers to maintain the unlocked state via vectors related to Handoff with Siri. Se ha descubierto un problema en ciertos productos Apple. iOS en versiones anteriores a 10.2 está afectado. El problema involucra al componente "SpringBoard", que permite a atacantes próximos físicamente mantener el estado desbloqueado a través de vectores relacionados con Handoff con Siri. • http://www.securityfocus.com/bid/94850 http://www.securitytracker.com/id/1037429 https://support.apple.com/HT207422 • CWE-254: 7PK - Security Features •