VYPR
← All advisories
Low severity3.3NVD Advisory· Published Feb 20, 2017· Updated May 13, 2026

CVE-2016-4664

CVE-2016-4664

Description

Apple iOS, tvOS, and watchOS before October 2016 allow a crafted app to read photo-directory metadata due to a Sandbox Profiles component vulnerability.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Apple iOS, tvOS, and watchOS before October 2016 allow a crafted app to read photo-directory metadata due to a Sandbox Profiles component vulnerability.

Vulnerability

The vulnerability resides in the Sandbox Profiles component of Apple iOS (before 10.1), tvOS (before 10.0.1), and watchOS (before 3.1). It allows a maliciously crafted application to bypass sandbox restrictions and read metadata from the photo directory [1][2][3]. The issue is present on iPhone 5 and later, iPad 4th generation and later, iPod touch 6th generation and later, Apple TV (4th generation), and all Apple Watch models [1][2][3].

Exploitation

An attacker must convince a user to install a crafted app on an affected device. No additional authentication or network position is required beyond the app's ability to execute on the device. The app can then access photo-directory metadata, such as timestamps or file names, without the user's explicit consent [1][2][3].

Impact

Successful exploitation results in unauthorized disclosure of photo-directory metadata. The attacker gains read access to metadata that the sandbox should have protected, compromising confidentiality. The integrity and availability of the system remain unaffected [1][2][3].

Mitigation

Apple released fixes as part of iOS 10.1, tvOS 10.0.1, and watchOS 3.1 on October 24, 2016 [1][2][3]. Users should update their devices to these versions or later to remediate the vulnerability. No workaround is available for earlier versions.

References
  1. About the security content of iOS 10.1 - Apple Support
  2. About the security content of tvOS 10.0.1 - Apple Support
  3. About the security content of watchOS 3.1 - Apple Support

AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

6
  • Apple Inc./Iphone OS
    cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
    Range: <=10.0.3
  • Apple Inc./tvOS2 versions
    cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*range: <=10.0
    • (no CPE)range: <10.0.1
  • Apple Inc./watchOS2 versions
    cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*range: <=2.2.2
    • (no CPE)range: <3.1
  • Apple Inc./iOSllm-fuzzy
    Range: <10.1

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

5

News mentions

0

No linked articles in our index yet.