CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2016-4655

Known Exploited (CISA KEV)MEDIUM
5.5
CVSS Severity Score
EPSS Score36.5930%
EPSS Percentile98.83th
Published2016年8月25日
Last Modified2026年4月21日

Vulnerability Description

The kernel in Apple iOS before 9.3.5 allows attackers to obtain sensitive information from memory via a crafted app.

Affected Platforms (CPE)

💻
Apple

Iphone Os

< 9.3.5
💻
Apple

Iphone Os

= 10.0

References & Advisories

🔗 http://lists.apple.com/archives/security-announce/2016/Aug/msg00000.html
🔗 http://lists.apple.com/archives/security-announce/2016/Sep/msg00005.html
🔗 http://www.securityfocus.com/bid/92651
🔗 http://www.securityfocus.com/bid/92965
🔗 http://www.securitytracker.com/id/1036694
🔗 https://blog.lookout.com/blog/2016/08/25/trident-pegasus/
🔗 https://support.apple.com/HT207107
🔗 https://support.apple.com/HT207145

相關漏洞威脅

CVE-2008-421110.0

Integer signedness error in (1) QuickLook in Apple Mac OS X 10.5.5 and (2) Office Viewer in Apple iPhone OS 1.0 through 2.1 and iP...

CVE-2009-220410.0

Unspecified vulnerability in the CoreTelephony component in Apple iPhone OS before 3.0.1 allows remote attackers to execute arbitr...

CVE-2008-230310.0

Integer signedness error in Safari on Apple iPhone before 2.0 and iPod touch before 2.0 allows remote attackers to execute arbitra...

CVE-2010-111910.0

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, Safari before 4.1 on ...