CVE-2016-1823 in macOSinfo

Summary

The IOHIDDevice::handleReportWithTime function in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (out-of-bounds read and memory corruption) via a crafted IOHIDReportType enum, which triggers an incorrect cast, a different vulnerability than CVE-2016-1824.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

01/13/2016

Disclosure

05/20/2016

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
94390	Apple macOS IOHIDFamily out-of-bounds	125	Proof-of-Concept	Official fix	CVE-2016-1823
87504	Apple iOS IOHIDFamily memory corruption	119	Proof-of-Concept	Official fix	CVE-2016-1823
87463	Apple Mac OS X IOHIDFamily out-of-bounds	125	Proof-of-Concept	Official fix	CVE-2016-1823

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

◂ PreviousOverviewNext ▸

Interested in the pricing of exploits?

See the underground prices here!