bazad

13 exploits Active since May 2016
CVE-2018-4280 NOMISEC HIGH WORKING POC
Apple Iphone OS < 11.4.1 - Memory Corruption
A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2.
257 stars
CVSS 7.8
CVE-2018-4185 NOMISEC HIGH WORKING POC
Apple Iphone OS < 11.3 - Information Disclosure
In iOS before 11.3, tvOS before 11.3, watchOS before 4.3, and macOS before High Sierra 10.13.4, an information disclosure issue existed in the transition of program state. This issue was addressed with improved state handling.
87 stars
CVSS 7.5
CVE-2016-1828 NOMISEC HIGH WORKING POC
Apple iOS <9.3.2, OS X <10.11.5, tvOS <9.2.1, watchOS <2.2.1 - RCE/DoS
The kernel in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2016-1827, CVE-2016-1829, and CVE-2016-1830.
86 stars
CVSS 7.8
CVE-2016-1825 NOMISEC HIGH WORKING POC
Apple OS X <10.11.5 - RCE/DoS
IOHIDFamily in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
66 stars
CVSS 7.8
CVE-2018-4280 NOMISEC HIGH WORKING POC
Apple Iphone OS < 11.4.1 - Memory Corruption
A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2.
59 stars
CVSS 7.8
CVE-2018-4248 NOMISEC HIGH WORKING POC
Apple Iphone OS < 11.4.1 - Out-of-Bounds Read
An out-of-bounds read was addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2.
54 stars
CVSS 7.5
CVE-2017-13868 NOMISEC MEDIUM WORKING POC
Apple <11.2, <10.13.2, <4.2, <11.2 - Info Disclosure
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "Kernel" component. It allows attackers to bypass intended memory-read restrictions via a crafted app.
27 stars
CVSS 5.5
CVE-2018-4331 NOMISEC CRITICAL WORKING POC
Apple Iphone OS < 12.0 - Memory Corruption
A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5.
24 stars
CVSS 9.8
CVE-2018-4343 NOMISEC HIGH WORKING POC
Apple Iphone OS < 12.0 - Memory Corruption
A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5.
7 stars
CVSS 7.8
CVE-2016-1827 NOMISEC HIGH WORKING POC
Apple iOS <9.3.2 - Privilege Escalation
The kernel in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2016-1828, CVE-2016-1829, and CVE-2016-1830.
4 stars
CVSS 7.8
CVE-2017-7173 NOMISEC MEDIUM WORKING POC
Apple <10.13.2 - Info Disclosure
An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "Kernel" component. It allows attackers to bypass intended memory-read restrictions via a crafted app.
3 stars
CVSS 5.5
CVE-2017-2388 NOMISEC MEDIUM WORKING POC
Apple <10.12.4 - DoS
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "IOFireWireFamily" component. It allows attackers to cause a denial of service (NULL pointer dereference) via a crafted app.
3 stars
CVSS 5.5
CVE-2016-7608 NOMISEC MEDIUM WORKING POC
Apple Mac OS X < 10.12.1 - Information Disclosure
An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue involves the "IOFireWireFamily" component, which allows local users to obtain sensitive information from kernel memory via unspecified vectors.
2 stars
CVSS 5.5