Airport Base Station Firmware Security Vulnerabilities and Issues — Airport Base Station Firmware CVE List

Lucene search

AppleAirport Base Station Firmware

11 matches found

CVE•added 2016/06/26 1:59 a.m.•64 views

CVE-2015-7987

Multiple buffer overflows in mDNSResponder before 625.41.2 allow remote attackers to read or write to out-of-bounds memory locations via vectors involving the (1) GetValueForIPv4Addr, (2) GetValueForMACAddr, (3) rfc3110_import, or (4) CopyNSEC3ResourceRecord function.

9.8CVSS9.3AI score0.03085EPSS

CVE•added 2016/06/26 1:59 a.m.•60 views

CVE-2015-7988

The handle_regservice_request function in mDNSResponder before 625.41.2 allows remote attackers to execute arbitrary code or cause a denial of service (NULL pointer dereference) via unspecified vectors.

9.8CVSS9.7AI score0.03714EPSS

CVE•added 2016/07/03 1:59 a.m.•50 views

CVE-2015-7029

Apple AirPort Base Station Firmware before 7.6.7 and 7.7.x before 7.7.7 misparses DNS data, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.

10CVSS9.2AI score0.04326EPSS

CVE•added 2013/09/08 3:17 a.m.•47 views

CVE-2013-5132

Apple AirPort Base Station Firmware before 7.6.4 does not properly handle incorrect frame lengths, which allows remote attackers to cause a denial of service (device crash) by associating with the access point and then sending a short frame.

5.4CVSS6.2AI score0.00428EPSS

CVE•added 2020/10/27 8:15 p.m.•47 views

CVE-2019-8588

A null pointer dereference was addressed with improved input validation. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base Station Firmware Update 7.9.1. A remote attacker may be able to cause a system denial of service.

7.8CVSS6.8AI score0.00397EPSS

CVE•added 2020/10/27 8:15 p.m.•46 views

CVE-2019-8575

The issue was addressed with improved data deletion. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base Station Firmware Update 7.9.1. A base station factory reset may not delete all user information.

7.5CVSS6.8AI score0.00281EPSS

CVE•added 2020/10/27 8:15 p.m.•46 views

CVE-2019-8578

A use after free issue was addressed with improved memory management. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base Station Firmware Update 7.9.1. A remote attacker may be able to cause arbitrary code execution.

9.8CVSS8.4AI score0.02931EPSS

CVE•added 2020/10/27 8:15 p.m.•44 views

CVE-2019-8581

An out-of-bounds read was addressed with improved input validation. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base Station Firmware Update 7.9.1. A remote attacker may be able to leak memory.

9.8CVSS7.5AI score0.0061EPSS

CVE•added 2020/10/27 8:15 p.m.•43 views

CVE-2019-7291

A denial of service issue was addressed with improved memory handling. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base Station Firmware Update 7.9.1. An attacker in a privileged position may be able to perform a denial of service attack.

6.5CVSS5.8AI score0.0039EPSS

CVE•added 2020/10/27 8:15 p.m.•42 views

CVE-2019-8580

Source-routed IPv4 packets were disabled by default. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base Station Firmware Update 7.9.1. Source-routed IPv4 packets may be unexpectedly accepted.

7.5CVSS7.4AI score0.0021EPSS

CVE•added 2020/10/27 8:15 p.m.•41 views

CVE-2019-8572

9.8CVSS8.3AI score0.01639EPSS