The LaunchServices component in Apple iOS before 9.2 and watchOS before 2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a malformed plist.
Base Score: 10
Impact Score: 10
Exploitability Score: 10
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* versions up to 9.1 (inclusive)
cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* versions up to 2.0 (inclusive)
View all (2 total)