CVE-2016-4656 — Vulnetix

Try Vulnetix Request Demo

CVE-2016-4656 PUBLISHED KEV CVSS 9.300000190734863 CRITICAL

The kernel in Apple iOS before 9.3.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

EPSS 66.74% · 98.5th percentile

Risk Scores

CVSS v2.0

9.300000190734863

EPSS Score

66.74%

98.5th percentile

Affected Products

Vendor	Product	Versions
apple	iphone_os	0, 0, 0
n/a	n/a	n/a, n/a

Timeline

Aug 24, 2016 VulnCheck KEV Exploitation
Aug 25, 2016 PoC Published
Aug 25, 2016 PoC Published
Aug 25, 2016 CVE Published
Aug 26, 2016 PoC Published
Aug 26, 2016 PoC Published
Jun 4, 2018 PoC Published
Jun 4, 2018 PoC Published
Jun 5, 2018 PoC Published
Sep 19, 2018 PoC Published
Sep 19, 2018 PoC Published
Feb 7, 2019 VulnCheck KEV Exploitation

References

https://support.apple.com/HT207107 technical
https://www.exploit-db.com/exploits/44836/ exploit
https://blog.lookout.com/blog/2016/08/25/trident-pegasus/ url
APPLE-SA-2016-08-25-1 vendor-advisory
92652 vdb
1036694 vdb
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-4656 url
https://nvd.nist.gov/vuln/detail/CVE-2016-4656 advisory
https://blog.lookout.com/blog/2016/08/25/trident-pegasus url
https://www.exploit-db.com/exploits/44836 url
https://support.apple.com/en-us/HT207107 advisory
https://support.apple.com/en-us/HT207130 advisory
https://support.apple.com/en-us/HT207131 advisory
APPLE-SA-2016-09-14-1 vendor-advisory
92651 vdb
92965 vdb
https://support.apple.com/HT207145 url
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-4655 url

Open in Interactive Console →