VYPR

Airport Base Station Firmware

by Apple Inc.

CVEs (11)

  • CVE-2015-7029CriJul 3, 2016
    risk 0.64cvss 9.8epss 0.04

    Apple AirPort Base Station Firmware before 7.6.7 and 7.7.x before 7.7.7 misparses DNS data, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.

  • CVE-2015-7988CriJun 26, 2016
    risk 0.64cvss 9.8epss 0.05

    The handle_regservice_request function in mDNSResponder before 625.41.2 allows remote attackers to execute arbitrary code or cause a denial of service (NULL pointer dereference) via unspecified vectors.

  • CVE-2015-7987CriJun 26, 2016
    risk 0.64cvss 9.8epss 0.03

    Multiple buffer overflows in mDNSResponder before 625.41.2 allow remote attackers to read or write to out-of-bounds memory locations via vectors involving the (1) GetValueForIPv4Addr, (2) GetValueForMACAddr, (3) rfc3110_import, or (4) CopyNSEC3ResourceRecord function.

  • CVE-2019-8588Oct 27, 2020
    risk 0.00cvss epss 0.02

    A null pointer dereference was addressed with improved input validation. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base Station Firmware Update 7.9.1. A remote attacker may be able to cause a system denial of service.

  • CVE-2019-8581Oct 27, 2020
    risk 0.00cvss epss 0.02

    An out-of-bounds read was addressed with improved input validation. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base Station Firmware Update 7.9.1. A remote attacker may be able to leak memory.

  • CVE-2019-8580Oct 27, 2020
    risk 0.00cvss epss 0.01

    Source-routed IPv4 packets were disabled by default. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base Station Firmware Update 7.9.1. Source-routed IPv4 packets may be unexpectedly accepted.

  • CVE-2019-8578Oct 27, 2020
    risk 0.00cvss epss 0.03

    A use after free issue was addressed with improved memory management. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base Station Firmware Update 7.9.1. A remote attacker may be able to cause arbitrary code execution.

  • CVE-2019-8572Oct 27, 2020
    risk 0.00cvss epss 0.03

    A null pointer dereference was addressed with improved input validation. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base Station Firmware Update 7.9.1. A remote attacker may be able to cause arbitrary code execution.

  • CVE-2019-8575Oct 27, 2020
    risk 0.00cvss epss 0.01

    The issue was addressed with improved data deletion. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base Station Firmware Update 7.9.1. A base station factory reset may not delete all user information.

  • CVE-2019-7291Oct 27, 2020
    risk 0.00cvss epss 0.01

    A denial of service issue was addressed with improved memory handling. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base Station Firmware Update 7.9.1. An attacker in a privileged position may be able to perform a denial of service attack.

  • CVE-2013-5132Sep 8, 2013
    risk 0.00cvss epss 0.01

    Apple AirPort Base Station Firmware before 7.6.4 does not properly handle incorrect frame lengths, which allows remote attackers to cause a denial of service (device crash) by associating with the access point and then sending a short frame.