{"id":"CVE-2016-4738","details":"libxslt in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site.","modified":"2026-04-16T06:22:03.578715468Z","published":"2016-09-25T10:59:41.707Z","related":["SUSE-SU-2017:1282-1","SUSE-SU-2017:1313-1","openSUSE-SU-2024:11017-1","openSUSE-SU-2024:11340-1","openSUSE-SU-2024:11912-1","openSUSE-SU-2024:13165-1","openSUSE-SU-2024:14174-1","openSUSE-SU-2025:14697-1","openSUSE-SU-2026:10356-1"],"references":[{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SK4YNISS22MJY22YX5I6V2U63QZAUEHA/"},{"type":"ADVISORY","url":"http://lists.apple.com/archives/security-announce/2016/Sep/msg00010.html"},{"type":"ADVISORY","url":"http://lists.apple.com/archives/security-announce/2016/Sep/msg00011.html"},{"type":"ADVISORY","url":"http://www.debian.org/security/2016/dsa-3709"},{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/93054"},{"type":"ADVISORY","url":"https://support.apple.com/HT207170"},{"type":"ADVISORY","url":"http://lists.apple.com/archives/security-announce/2016/Sep/msg00006.html"},{"type":"ADVISORY","url":"http://www.securitytracker.com/id/1036858"},{"type":"ADVISORY","url":"https://support.apple.com/HT207141"},{"type":"ADVISORY","url":"https://support.apple.com/HT207142"},{"type":"ADVISORY","url":"https://support.apple.com/HT207143"},{"type":"ADVISORY","url":"http://lists.apple.com/archives/security-announce/2016/Sep/msg00008.html"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"10.0"}]},{"events":[{"introduced":"0"},{"fixed":"10.12.0"}]},{"events":[{"introduced":"0"},{"fixed":"10.0"}]},{"events":[{"introduced":"0"},{"fixed":"3.0"}]},{"events":[{"introduced":"0"},{"last_affected":"8.0"}]},{"events":[{"introduced":"0"},{"last_affected":"9.0"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-4738.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}