CVE-2015-6996
published 2015-10-23CVE-2015-6996: IOAcceleratorFamily in Apple iOS before 9.1, OS X before 10.11.1, and watchOS before 2.0.1 allows attackers to execute arbitrary code or cause a denial of…
PriorityP343medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
6.70%
93.1th percentile
IOAcceleratorFamily in Apple iOS before 9.1, OS X before 10.11.1, and watchOS before 2.0.1 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted app.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios | — | — |
| apple | iphone_os | <= 9.0.2 | — |
| apple | mac_os_x | <= 10.11.0 | — |
| apple | os_x_el_capitan_10.11.1_security_update_2015-004_yosemite_and_security_update_20 | — | — |
| apple | watchos | <= 2.0.0 | — |
| apple | watchos | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Apple
CVE-2015-6996: OS X El Capitan 10.11.1, Security Update 2015-004 Yosemite, and Security Update 2015-007 Mavericks
vendor_apple·CVSS 6.8
CVE-2015-6996 [MEDIUM] CVE-2015-6996: OS X El Capitan 10.11.1, Security Update 2015-004 Yosemite, and Security Update 2015-007 Mavericks
Apple Security Update: About the security content of OS X El Capitan 10.11.1, Security Update 2015-004 Yosemite, and Security Update 2015-007 Mavericks
Product: OS X El Capitan 10.11.1, Security Update 2015-004 Yosemite, and Security Update 2015-007 Mavericks
CVE: CVE-2015-6996
Component: CVE-ID
Apple
CVE-2015-6996: iOS 9.1
vendor_apple·CVSS 6.8
CVE-2015-6996 [MEDIUM] CVE-2015-6996: iOS 9.1
Apple Security Update: About the security content of iOS 9.1
Product: iOS
Version: 9.1
CVE: CVE-2015-6996
Component: CVE-ID
Apple
CVE-2015-6996: watchOS 2.0.1
vendor_apple·CVSS 6.8
CVE-2015-6996 [MEDIUM] CVE-2015-6996: watchOS 2.0.1
Apple Security Update: About the security content of watchOS 2.0.1
Product: watchOS
Version: 2.0.1
CVE: CVE-2015-6996
Component: CVE-ID
GHSA
GHSA-4xjx-f4hj-g5jv: IOAcceleratorFamily in Apple iOS before 9
ghsa_unreviewed·2022-05-17
CVE-2015-6996 [MEDIUM] CWE-119 GHSA-4xjx-f4hj-g5jv: IOAcceleratorFamily in Apple iOS before 9
IOAcceleratorFamily in Apple iOS before 9.1, OS X before 10.11.1, and watchOS before 2.0.1 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted app.
No detection rules found.
No writeups or analysis indexed.
http://lists.apple.com/archives/security-announce/2015/Oct/msg00002.htmlhttp://lists.apple.com/archives/security-announce/2015/Oct/msg00003.htmlhttp://lists.apple.com/archives/security-announce/2015/Oct/msg00005.htmlhttp://www.securitytracker.com/id/1033929https://support.apple.com/HT205370https://support.apple.com/HT205375https://support.apple.com/HT205378http://lists.apple.com/archives/security-announce/2015/Oct/msg00002.htmlhttp://lists.apple.com/archives/security-announce/2015/Oct/msg00003.htmlhttp://lists.apple.com/archives/security-announce/2015/Oct/msg00005.htmlhttp://www.securitytracker.com/id/1033929https://support.apple.com/HT205370https://support.apple.com/HT205375https://support.apple.com/HT205378
2015-10-23
Published