CVE-2016-4773
published 2016-09-25CVE-2016-4773: The kernel in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows attackers to obtain sensitive memory-layout information or…
PriorityP425high7.1CVSS 3.0
AVLACLPRNUIRSUCHINAH
EPSS
0.20%
41.4th percentile
The kernel in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows attackers to obtain sensitive memory-layout information or cause a denial of service (out-of-bounds read) via a crafted app, a different vulnerability than CVE-2016-4774 and CVE-2016-4776.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios | — | — |
| apple | iphone_os | < 10.0 | 10.0 |
| apple | mac_os_x | < 10.12 | 10.12 |
| apple | mac_os_x | < 10.12.0 | 10.12.0 |
| apple | macos_sierra | — | — |
| apple | tvos | < 10.0 | 10.0 |
| apple | tvos | — | — |
| apple | watchos | < 3.0 | 3.0 |
| apple | watchos_3 | — | — |
CVSS provenance
nvdv3.07.1HIGHCVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H
nvdv2.05.8MEDIUMAV:N/AC:M/Au:N/C:P/I:N/A:P
GHSA
GHSA-8rh4-36c6-phxm: The kernel in Apple iOS before 10, OS X before 10
ghsa_unreviewed·2022-05-14·CVSS 7.1
CVE-2016-4774 [HIGH] CWE-125 GHSA-8rh4-36c6-phxm: The kernel in Apple iOS before 10, OS X before 10
The kernel in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows attackers to obtain sensitive memory-layout information or cause a denial of service (out-of-bounds read) via a crafted app, a different vulnerability than CVE-2016-4773 and CVE-2016-4776.
GHSA
GHSA-2vhh-4gvf-c7j7: The kernel in Apple iOS before 10, OS X before 10
ghsa_unreviewed·2022-05-14·CVSS 7.1
CVE-2016-4773 [HIGH] CWE-125 GHSA-2vhh-4gvf-c7j7: The kernel in Apple iOS before 10, OS X before 10
The kernel in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows attackers to obtain sensitive memory-layout information or cause a denial of service (out-of-bounds read) via a crafted app, a different vulnerability than CVE-2016-4774 and CVE-2016-4776.
GHSA
GHSA-px39-9mfw-mqmq: The kernel in Apple iOS before 10, OS X before 10
ghsa_unreviewed·2022-05-14·CVSS 7.1
CVE-2016-4776 [HIGH] CWE-125 GHSA-px39-9mfw-mqmq: The kernel in Apple iOS before 10, OS X before 10
The kernel in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows attackers to obtain sensitive memory-layout information or cause a denial of service (out-of-bounds read) via a crafted app, a different vulnerability than CVE-2016-4773 and CVE-2016-4774.
Apple
CVE-2016-4773: macOS Sierra 10.12
vendor_apple·2016-09-20·CVSS 7.1
CVE-2016-4773 [HIGH] CVE-2016-4773: macOS Sierra 10.12
Apple Security Update: About the security content of macOS Sierra 10.12
Product: macOS Sierra
Version: 10.12
CVE: CVE-2016-4773
Component: Kernel
Impact: An application may be able to determine kernel memory layout
Description: Multiple out-of-bounds read issues existed that led to the disclosure of kernel memory. These were addressed through improved input validation.
Apple
CVE-2016-4773: watchOS 3
vendor_apple·2016-09-13·CVSS 7.1
CVE-2016-4773 [HIGH] CVE-2016-4773: watchOS 3
Apple Security Update: About the security content of watchOS 3
Product: watchOS 3
CVE: CVE-2016-4773
Component: Kernel
Impact: An application may be able to determine kernel memory layout
Description: Multiple out-of-bounds read issues existed that led to the disclosure of kernel memory. These were addressed through improved input validation.
Apple
CVE-2016-4773: tvOS 10
vendor_apple·2016-09-13·CVSS 7.1
CVE-2016-4773 [HIGH] CVE-2016-4773: tvOS 10
Apple Security Update: About the security content of tvOS 10
Product: tvOS
Version: 10
CVE: CVE-2016-4773
Component: Kernel
Impact: An application may be able to determine kernel memory layout
Description: Multiple out-of-bounds read issues existed that led to the disclosure of kernel memory. These were addressed through improved input validation.
Apple
CVE-2016-4773: iOS 10
vendor_apple·2016-09-13·CVSS 7.1
CVE-2016-4773 [HIGH] CVE-2016-4773: iOS 10
Apple Security Update: About the security content of iOS 10
Product: iOS
Version: 10
CVE: CVE-2016-4773
Component: Kernel
Impact: An application may be able to determine kernel memory layout
Description: Multiple out-of-bounds read issues existed that led to the disclosure of kernel memory. These were addressed through improved input validation.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://lists.apple.com/archives/security-announce/2016/Sep/msg00006.htmlhttp://lists.apple.com/archives/security-announce/2016/Sep/msg00008.htmlhttp://lists.apple.com/archives/security-announce/2016/Sep/msg00010.htmlhttp://lists.apple.com/archives/security-announce/2016/Sep/msg00011.htmlhttp://www.securityfocus.com/bid/93054http://www.securitytracker.com/id/1036858https://support.apple.com/HT207141https://support.apple.com/HT207142https://support.apple.com/HT207143https://support.apple.com/HT207170http://lists.apple.com/archives/security-announce/2016/Sep/msg00006.htmlhttp://lists.apple.com/archives/security-announce/2016/Sep/msg00008.htmlhttp://lists.apple.com/archives/security-announce/2016/Sep/msg00010.htmlhttp://lists.apple.com/archives/security-announce/2016/Sep/msg00011.htmlhttp://www.securityfocus.com/bid/93054http://www.securitytracker.com/id/1036858https://support.apple.com/HT207141https://support.apple.com/HT207142https://support.apple.com/HT207143https://support.apple.com/HT207170
2016-09-25
Published