Arbitrary Code Execution and Denial of Service Vulnerability in CoreCrypto

Arbitrary Code Execution and Denial of Service Vulnerability in CoreCrypto

CVE-2016-4712 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

CoreCrypto in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows attackers to execute arbitrary code or cause a denial of service (out-of-bounds write) via a crafted app.

Learn more about our Cis Benchmark Audit For Apple Ios.