cbcvebase.
CVE-2015-7112
published 2015-12-11

CVE-2015-7112: The IOHIDFamily API in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows attackers to execute arbitrary code in a…

PriorityP354critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
8.82%
94.5th percentile
The IOHIDFamily API in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2015-7111.

Affected

8 ranges
VendorProductVersion rangeFixed in
appleios
appleiphone_os<= 9.1
applemac_os_x<= 10.11.1
appleos_x_el_capitan_10.11.2_security_update_2015-005_yosemite_and_security_update_20
appletvos<= 9.0
appletvos
applewatchos<= 2.0
applewatchos
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.