VAR-201608-0187 — Vulnetix

VAR-201608-0187 PUBLISHED CVSS 7.800000190734863 HIGH

The kernel in Apple iOS before 9.3.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

Risk Scores

CVSS v3.1

7.800000190734863

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a

Timeline

Aug 25, 2016 CVE Published
Aug 25, 2016 PoC Published
Aug 26, 2016 PoC Published
Jun 4, 2018 PoC Published
Jun 5, 2018 PoC Published
Sep 19, 2018 PoC Published
Oct 9, 2020 PoC Published
Jun 14, 2023 PoC Published
Dec 24, 2024 PoC Published
Feb 6, 2025 PoC Published
Feb 23, 2025 PoC Published
Feb 23, 2025 PoC Published

References

https://blog.lookout.com/blog/2016/08/25/trident-pegasus/ url
44836 exploit
https://support.apple.com/HT207107 url
APPLE-SA-2016-08-25-1 vendor-advisory
92652 vdb
1036694 vdb
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-4656 url

Open in Interactive Console →