Apple Airport Base Station Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Apple Airport Base Station Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (11)
CVE-2015-7029 — CVSS 9.8 (critical): Apple AirPort Base Station Firmware before 7.6.7 and 7.7.x before 7.7.7 misparses DNS data, which allows remote attackers to execute…
CVE-2019-8578 — CVSS 9.8 (critical): A use after free issue was addressed with improved memory management. This issue is fixed in AirPort Base Station Firmware Update 7.8.1…
CVE-2015-7987 — CVSS 9.8 (critical): Multiple buffer overflows in mDNSResponder before 625.41.2 allow remote attackers to read or write to out-of-bounds memory locations via…
CVE-2015-7988 — CVSS 9.8 (critical): The handle_regservice_request function in mDNSResponder before 625.41.2 allows remote attackers to execute arbitrary code or cause a denial…
CVE-2019-8581 — CVSS 9.8 (critical): An out-of-bounds read was addressed with improved input validation. This issue is fixed in AirPort Base Station Firmware Update 7.8.1…
CVE-2019-8572 — CVSS 9.8 (critical): A null pointer dereference was addressed with improved input validation. This issue is fixed in AirPort Base Station Firmware Update 7.8.1…
CVE-2019-8588 — CVSS 7.5 (high): A null pointer dereference was addressed with improved input validation. This issue is fixed in AirPort Base Station Firmware Update 7.8.1…
CVE-2019-8575 — CVSS 7.5 (high): The issue was addressed with improved data deletion. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base…
CVE-2019-8580 — CVSS 7.5 (high): Source-routed IPv4 packets were disabled by default. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base…
CVE-2019-7291 — CVSS 6.5 (medium): A denial of service issue was addressed with improved memory handling. This issue is fixed in AirPort Base Station Firmware Update 7.8.1…
CVE-2013-5132 — CVSS 5.4 (medium): Apple AirPort Base Station Firmware before 7.6.4 does not properly handle incorrect frame lengths, which allows remote attackers to cause a…