Brandon Azad

26 exploits Active since May 2016
CVE-2018-4280 NOMISEC HIGH WORKING POC
iPhone OS < 11.4.1 - Memory Corruption
A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2.
257 stars
CVSS 7.8
CVE-2018-4185 NOMISEC HIGH WORKING POC
iPhone OS < 11.3, macOS < 10.13.4, tvOS < 11.3, watchOS < 4.3 - Information Disclosure via State Transition
In iOS before 11.3, tvOS before 11.3, watchOS before 4.3, and macOS before High Sierra 10.13.4, an information disclosure issue existed in the transition of program state. This issue was addressed with improved state handling.
87 stars
CVSS 7.5
CVE-2016-1828 NOMISEC HIGH WORKING POC
Apple iOS <9.3.2, OS X <10.11.5, tvOS <9.2.1, watchOS <2.2.1 - RCE/DoS
The kernel in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2016-1827, CVE-2016-1829, and CVE-2016-1830.
86 stars
CVSS 7.8
CVE-2016-1825 NOMISEC HIGH WORKING POC
macOS < 10.11.5 - Memory Corruption in IOHIDFamily
IOHIDFamily in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
66 stars
CVSS 7.8
CVE-2018-4280 NOMISEC HIGH WORKING POC
iPhone OS < 11.4.1 - Memory Corruption
A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2.
59 stars
CVSS 7.8
CVE-2018-4248 NOMISEC HIGH WORKING POC
iPhone OS < 11.4.1 - Out-of-bounds Read
An out-of-bounds read was addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2.
54 stars
CVSS 7.5
CVE-2021-1782 NOMISEC HIGH WORKING POC
iPadOS < 14.4 - Privilege Escalation via Race Condition
A race condition was addressed with improved locking. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. A malicious application may be able to elevate privileges. Apple is aware of a report that this issue may have been actively exploited..
39 stars
CVSS 7.0
CVE-2017-13868 NOMISEC MEDIUM WORKING POC
Apple <11.2, <10.13.2, <4.2, <11.2 - Info Disclosure
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "Kernel" component. It allows attackers to bypass intended memory-read restrictions via a crafted app.
27 stars
CVSS 5.5
CVE-2018-4331 NOMISEC CRITICAL WORKING POC
iPhone OS < 12.0 - Memory Corruption
A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5.
24 stars
CVSS 9.8
CVE-2019-6225 NOMISEC HIGH WORKING POC
iPhone OS < 12.1.3 - Memory Corruption via Improved Validation
A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2. A malicious application may be able to elevate privileges.
15 stars
CVSS 7.8
CVE-2018-4343 NOMISEC HIGH WORKING POC
iPhone OS < 12.0 - Memory Corruption
A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5.
7 stars
CVSS 7.8
CVE-2021-1782 GITHUB HIGH c WORKING POC
iPadOS < 14.4 - Privilege Escalation via Race Condition
A race condition was addressed with improved locking. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. A malicious application may be able to elevate privileges. Apple is aware of a report that this issue may have been actively exploited..
4 stars
CVSS 7.0
CVE-2016-1827 NOMISEC HIGH WORKING POC
Apple iOS <9.3.2 - Privilege Escalation
The kernel in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2016-1828, CVE-2016-1829, and CVE-2016-1830.
4 stars
CVSS 7.8
CVE-2017-2388 NOMISEC MEDIUM WORKING POC
macOS < 10.12.4 - Denial of Service via IOFireWireFamily NULL Pointer Dereference
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "IOFireWireFamily" component. It allows attackers to cause a denial of service (NULL pointer dereference) via a crafted app.
3 stars
CVSS 5.5
CVE-2017-7173 NOMISEC MEDIUM WORKING POC
macOS < 10.13.2 - Kernel Memory Read Restriction Bypass
An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "Kernel" component. It allows attackers to bypass intended memory-read restrictions via a crafted app.
3 stars
CVSS 5.5
CVE-2016-7608 NOMISEC MEDIUM WORKING POC
macOS < 10.12.2 - Unauthorized Kernel Memory Exposure via IOFireWireFamily
An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue involves the "IOFireWireFamily" component, which allows local users to obtain sensitive information from kernel memory via unspecified vectors.
2 stars
CVSS 5.5
CVE-2019-6225 GITLAB HIGH WORKING POC
iPhone OS < 12.1.3 - Memory Corruption via Improved Validation
A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2. A malicious application may be able to elevate privileges.
CVSS 7.8
CVE-2016-1825 EXPLOITDB HIGH WORKING POC
macOS < 10.11.5 - Memory Corruption in IOHIDFamily
IOHIDFamily in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
CVSS 7.8
CVE-2016-1827 EXPLOITDB HIGH c WORKING POC
Apple iOS <9.3.2 - Privilege Escalation
The kernel in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2016-1828, CVE-2016-1829, and CVE-2016-1830.
CVSS 7.8
CVE-2016-1828 EXPLOITDB HIGH WRITEUP
Apple iOS <9.3.2, OS X <10.11.5, tvOS <9.2.1, watchOS <2.2.1 - RCE/DoS
The kernel in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2016-1827, CVE-2016-1829, and CVE-2016-1830.
CVSS 7.8
CVE-2016-7608 EXPLOITDB MEDIUM c WORKING POC
macOS < 10.12.2 - Unauthorized Kernel Memory Exposure via IOFireWireFamily
An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue involves the "IOFireWireFamily" component, which allows local users to obtain sensitive information from kernel memory via unspecified vectors.
CVSS 5.5
CVE-2017-2388 EXPLOITDB MEDIUM c WORKING POC
macOS < 10.12.4 - Denial of Service via IOFireWireFamily NULL Pointer Dereference
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "IOFireWireFamily" component. It allows attackers to cause a denial of service (NULL pointer dereference) via a crafted app.
CVSS 5.5
CVE-2019-6209 EXPLOITDB MEDIUM c WORKING POC
iPhone OS < 12.1.3, macOS < 10.14.3, tvOS < 12.1.2, watchOS < 5.1.3 - Out-of-bounds Read
An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2, watchOS 5.1.3. A malicious application may be able to determine kernel memory layout.
CVSS 5.5
CVE-2019-6225 EXPLOITDB HIGH c WRITEUP
iPhone OS < 12.1.3 - Memory Corruption via Improved Validation
A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2. A malicious application may be able to elevate privileges.
CVSS 7.8
CVE-2016-7617 EXPLOITDB HIGH WORKING POC
macOS < 10.12.2 - Remote Code Execution or Denial of Service via Bluetooth Type Confusion
An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue involves the "Bluetooth" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (type confusion) via a crafted app.
CVSS 7.8