Apple Watchos 4 vulnerabilities

CVE-2017-13873 [MEDIUM] CVE-2017-13873: watchOS 4 Apple Security Update: About the security content of watchOS 4 Product: watchOS 4 CVE: CVE-2017-13873 Component: Kernel Impact: A malicious application may be able to learn information about the presence and operation of other applications on the device. Description: An application was able to access network activity information maintained by the operating system unrestricted. This issue was addressed by reducing the information available to thir

CVE-2017-13841 [MEDIUM] CVE-2017-13841: watchOS 4 Apple Security Update: About the security content of watchOS 4 Product: watchOS 4 CVE: CVE-2017-13841 Component: Kernel Impact: An application may be able to read restricted memory Description: A validation issue was addressed with improved input sanitization.

CVE-2017-13836 [MEDIUM] CVE-2017-13836: watchOS 4 Apple Security Update: About the security content of watchOS 4 Product: watchOS 4 CVE: CVE-2017-13836 Component: Kernel Impact: An application may be able to read restricted memory Description: A validation issue was addressed with improved input sanitization.

CVE-2017-13821 [MEDIUM] CVE-2017-13821: watchOS 4 Apple Security Update: About the security content of watchOS 4 Product: watchOS 4 CVE: CVE-2017-13821 Component: CFString Impact: An application may be able to read restricted memory Description: A validation issue was addressed with improved input sanitization.

CVE-2017-13828 [MEDIUM] CVE-2017-13828: watchOS 4 Apple Security Update: About the security content of watchOS 4 Product: watchOS 4 CVE: CVE-2017-13828 Component: Fonts Impact: Rendering untrusted text may lead to spoofing Description: An inconsistent user interface issue was addressed with improved state management.

CVE-2017-13782 [MEDIUM] CVE-2017-13782: watchOS 4 Apple Security Update: About the security content of watchOS 4 Product: watchOS 4 CVE: CVE-2017-13782 Component: Kernel Impact: An application may be able to read restricted memory Description: A validation issue was addressed with improved input sanitization.

CVE-2017-7083 [MEDIUM] CVE-2017-7083: watchOS 4 Apple Security Update: About the security content of watchOS 4 Product: watchOS 4 CVE: CVE-2017-7083 Component: CFNetwork Proxies Impact: An attacker in a privileged network position may be able to cause a denial of service Description: Multiple denial of service issues were addressed through improved memory handling.

CVE-2017-13817 [MEDIUM] CVE-2017-13817: watchOS 4 Apple Security Update: About the security content of watchOS 4 Product: watchOS 4 CVE: CVE-2017-13817 Component: Kernel Impact: A local user may be able to read kernel memory Description: An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed through improved input validation.

CVE-2017-13840 [MEDIUM] CVE-2017-13840: watchOS 4 Apple Security Update: About the security content of watchOS 4 Product: watchOS 4 CVE: CVE-2017-13840 Component: Kernel Impact: An application may be able to read restricted memory Description: A validation issue was addressed with improved input sanitization.

CVE-2017-1000373 [MEDIUM] CVE-2017-1000373: watchOS 4 Apple Security Update: About the security content of watchOS 4 Product: watchOS 4 CVE: CVE-2017-1000373 Component: CVE-2017-1000373 Impact: Multiple issues in expat Description: Multiple issues were addressed by updating to version 2.2.1

CVE-2017-13818 [MEDIUM] CVE-2017-13818: watchOS 4 Apple Security Update: About the security content of watchOS 4 Product: watchOS 4 CVE: CVE-2017-13818 Component: Kernel Impact: An application may be able to read restricted memory Description: A validation issue was addressed with improved input sanitization.

CVE-2017-13842 [MEDIUM] CVE-2017-13842: watchOS 4 Apple Security Update: About the security content of watchOS 4 Product: watchOS 4 CVE: CVE-2017-13842 Component: Kernel Impact: An application may be able to read restricted memory Description: A validation issue was addressed with improved input sanitization.