Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
iOS Number Of NVD 3541 CRITICAL 137 HIGH 1622 MEDIUM 1441 LOW 245
URL https://www.apple.com/jp/ios/
Explanation This is the operating system installed on the iPhone provided by Apple.
Tag
  • Mobile
  • Apple
Add Information URL
No Type Name URL
1 https://support.apple.com/en-us/HT201222
2 https://developer.apple.com/documentation/ios-ipados-release-notes
3 https://en.wikipedia.org/wiki/IOS_version_history
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
3011 iOS17 17.6.1 Aug. 27, 2024 Sept. 18, 2023 8 70 139 21
3012 iOS16 16.4.1 April 7, 2023 Sept. 12, 2022 24 200 264 55
3013 iOS 15 15.7 Sept. 12, 2022 Sept. 20, 2021 38 351 349 71
3014 iOS 14 14.8 Sept. 13, 2021 July 9, 2020 52 522 456 78
3015 iOS 13 13.7 Sept. 1, 2020 Sept. 19, 2019 64 702 540 95
3016 iOS 12 12.5.1 Jan. 11, 2021 Sept. 17, 2018 83 859 620 107
3017 iOS 11 11.4.1 July 9, 2018 Sept. 19, 2017 93 1024 689 115
3018 iOS 10 10.3.4 July 22, 2019 Sept. 13, 2016 119 1245 789 132
3019 iOS 9 9.3.6 July 22, 2019 Sept. 16, 2015 133 1371 916 148
3020 iOS 8 8.4.1 Aug. 13, 2015 Sept. 17, 2014 131 1426 1129 180
3021 iOS 7 7.0.6 Feb. 21, 2014 Sept. 18, 2013 131 1447 1192 203
3022 iOS 6 6.0.2 Dec. 18, 2012 Sept. 19, 2012 131 1473 1255 215
3023 iOS 5 5.0.1 Nov. 10, 2011 Oct. 12, 2011 131 1542 1329 227
3024 iOS 4 4.0.2 Aug. 11, 2010 June 21, 2010 132 1569 1384 234
3025 iPhone OS 3 3.0.1 July 31, 2009 June 17, 2009 132 1576 1399 237
3026 iPhone OS 2 1.1.5 July 15, 2008 July 11, 2008 133 1588 1394 235
3027 iPhone OS 1 1.0.2 Aug. 21, 2007 June 29, 2007 132 1593 1395 236
3028 iOS7.1 7.1.2 131 1440 1168 197
3029 iOS6.1 6.1.6 131 1464 1236 211
3030 iOS6.0 6.0.2 131 1473 1254 215
3031 iOS5.1 5.1.1 131 1483 1307 225
3032 iOS4.3 4.3.5 131 1561 1357 233
3033 iOS4.2 4.2.9 131 1563 1362 233
3034 iOS4.1 4.1 132 1566 1374 233
3035 iOS3.2 3.2.2 132 1570 1389 235
3036 iOS3.1 3.1.3 132 1573 1397 235
3037 iOS2.2 2.2.1 132 1584 1393 231
3038 iOS2.1 2.1.1 132 1588 1394 235
3039 iOS2.0 2.0.2 133 1588 1393 235
3040 iOS16.2 16.2 18 165 231 54
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
3011 -
1.9 		LOW House Arrest in Apple iOS before 8.1 relies on the hardware UID for its encryption key, which makes it easier for physically proximate attackers to obtain sensitive information from a Documents direc… CWE-310
Cryptographic Issues 		CVE-2014-4448 cpe:2.3:o:apple:iphone_os:*:* 8.0.2 2024-11-21 11:10
2014-10-22 		Show GitHub Exploit DB Packet Storm
3012 -
7.5 		HIGH Use-after-free vulnerability in the ProcessingInstruction::setXSLStyleSheet function in core/dom/ProcessingInstruction.cpp in the DOM implementation in Blink, as used in Google Chrome before 38.0.212… CWE-416
 Use After Free 		CVE-2014-3192 cpe:2.3:o:apple:iphone_os:*:* 8.1.2 2024-11-21 11:07
2014-10-8 		Show GitHub Exploit DB Packet Storm
3013 -
6.8 		MEDIUM Google Chrome before 37.0.2062.60 and 38.x before 38.0.2125.59 on iOS does not properly restrict processing of (1) facetime:// and (2) facetime-audio:// URLs, which allows remote attackers to obtain … CWE-79
Cross-site Scripting 		CVE-2014-3187 cpe:2.3:o:apple:iphone_os:-:* 2024-11-21 11:07
2014-10-8 		Show GitHub Exploit DB Packet Storm
3014 7.8
9.3 		HIGH
Local 		Heap-based buffer overflow in IOHIDFamily in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context via an application that provides crafted key-m… CWE-787
 Out-of-bounds Write 		CVE-2014-4404 cpe:2.3:o:apple:iphone_os:*:* 8.0 2026-04-22 01:22
2014-09-18 		Show GitHub Exploit DB Packet Storm
3015 -
4.3 		MEDIUM The Accounts subsystem in Apple iOS before 8 allows attackers to bypass a sandbox protection mechanism and obtain an active iCloud account's Apple ID and metadata via a crafted application. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-4423 cpe:2.3:o:apple:iphone_os:7.1:*
cpe:2.3:o:apple:iphone_os:7.1.1:*
cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:ap… 		7.1.2 2024-11-21 11:10
2014-09-18 		Show GitHub Exploit DB Packet Storm
3016 8.1
6.8 		HIGH
Network 		The kernel in Apple iOS before 8 and Apple TV before 7 uses a predictable random number generator during the early portion of the boot process, which allows attackers to bypass certain kernel-hardeni… CWE-310
Cryptographic Issues 		CVE-2014-4422 cpe:2.3:o:apple:iphone_os:7.1:*
cpe:2.3:o:apple:iphone_os:7.1.1:*
cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:ap… 		7.1.2 2024-11-21 11:10
2014-09-18 		Show GitHub Exploit DB Packet Storm
3017 -
1.9 		LOW The network-statistics interface in the kernel in Apple iOS before 8 and Apple TV before 7 does not properly initialize memory, which allows attackers to obtain sensitive memory-content and memory-la… NVD-CWE-Other
CVE-2014-4421 cpe:2.3:o:apple:iphone_os:7.1:*
cpe:2.3:o:apple:iphone_os:7.1.1:*
cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:ap… 		7.1.2 2024-11-21 11:10
2014-09-18 		Show GitHub Exploit DB Packet Storm
3018 -
1.9 		LOW The network-statistics interface in the kernel in Apple iOS before 8 and Apple TV before 7 does not properly initialize memory, which allows attackers to obtain sensitive memory-content and memory-la… NVD-CWE-Other
CVE-2014-4420 cpe:2.3:o:apple:iphone_os:7.1:*
cpe:2.3:o:apple:iphone_os:7.1.1:*
cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:ap… 		7.1.2 2024-11-21 11:10
2014-09-18 		Show GitHub Exploit DB Packet Storm
3019 -
1.9 		LOW The network-statistics interface in the kernel in Apple iOS before 8 and Apple TV before 7 does not properly initialize memory, which allows attackers to obtain sensitive memory-content and memory-la… NVD-CWE-Other
CVE-2014-4419 cpe:2.3:o:apple:iphone_os:7.1:*
cpe:2.3:o:apple:iphone_os:7.1.1:*
cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:ap… 		7.1.2 2024-11-21 11:10
2014-09-18 		Show GitHub Exploit DB Packet Storm
3020 7.8
9.3 		HIGH
Local 		IOKit in Apple iOS before 8 and Apple TV before 7 does not properly validate IODataQueue object metadata, which allows attackers to execute arbitrary code in a privileged context via an application t… CWE-20
 Improper Input Validation  		CVE-2014-4418 cpe:2.3:o:apple:iphone_os:7.1:*
cpe:2.3:o:apple:iphone_os:7.1.1:*
cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:ap… 		7.1.2 2024-11-21 11:10
2014-09-18 		Show GitHub Exploit DB Packet Storm