cbcvebase.
CVE-2015-7039
published 2015-12-11

CVE-2015-7039: Buffer overflow in libc in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows remote attackers to execute arbitrary code…

PriorityP350medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
11.30%
95.4th percentile
Buffer overflow in libc in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows remote attackers to execute arbitrary code via a crafted package, a different vulnerability than CVE-2015-7038.

Affected

8 ranges
VendorProductVersion rangeFixed in
appleios
appleiphone_os<= 9.1
applemac_os_x<= 10.11.1
appleos_x_el_capitan_10.11.2_security_update_2015-005_yosemite_and_security_update_20
appletvos<= 9.0
appletvos
applewatchos<= 2.0
applewatchos
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.