| iOS | Number Of NVD | 3541 | CRITICAL | 137 | HIGH | 1622 | MEDIUM | 1441 | LOW | 245 |
| URL | https://www.apple.com/jp/ios/ | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| Explanation | This is the operating system installed on the iPhone provided by Apple. | ||||||||
| Tag | |||||||||
| No | Type | Name | URL |
|---|---|---|---|
| 1 | https://support.apple.com/en-us/HT201222 | ||
| 2 | https://developer.apple.com/documentation/ios-ipados-release-notes | ||
| 3 | https://en.wikipedia.org/wiki/IOS_version_history |
| No | Name | Latest Version | Release date | Initial release | Normal Support | Security Support Service Pack Support |
Extended for a fee |
Critical | High | Medium | Low |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 3131 | iOS17 | 17.6.1 | Aug. 27, 2024 | Sept. 18, 2023 | 8 | 70 | 139 | 21 | |||
| 3132 | iOS16 | 16.4.1 | April 7, 2023 | Sept. 12, 2022 | 24 | 200 | 264 | 55 | |||
| 3133 | iOS 15 | 15.7 | Sept. 12, 2022 | Sept. 20, 2021 | 38 | 351 | 349 | 71 | |||
| 3134 | iOS 14 | 14.8 | Sept. 13, 2021 | July 9, 2020 | 52 | 522 | 456 | 78 | |||
| 3135 | iOS 13 | 13.7 | Sept. 1, 2020 | Sept. 19, 2019 | 64 | 702 | 540 | 95 | |||
| 3136 | iOS 12 | 12.5.1 | Jan. 11, 2021 | Sept. 17, 2018 | 83 | 859 | 620 | 107 | |||
| 3137 | iOS 11 | 11.4.1 | July 9, 2018 | Sept. 19, 2017 | 93 | 1024 | 689 | 115 | |||
| 3138 | iOS 10 | 10.3.4 | July 22, 2019 | Sept. 13, 2016 | 119 | 1245 | 789 | 132 | |||
| 3139 | iOS 9 | 9.3.6 | July 22, 2019 | Sept. 16, 2015 | 133 | 1371 | 916 | 148 | |||
| 3140 | iOS 8 | 8.4.1 | Aug. 13, 2015 | Sept. 17, 2014 | 131 | 1426 | 1129 | 180 | |||
| 3141 | iOS 7 | 7.0.6 | Feb. 21, 2014 | Sept. 18, 2013 | 131 | 1447 | 1192 | 203 | |||
| 3142 | iOS 6 | 6.0.2 | Dec. 18, 2012 | Sept. 19, 2012 | 131 | 1473 | 1255 | 215 | |||
| 3143 | iOS 5 | 5.0.1 | Nov. 10, 2011 | Oct. 12, 2011 | 131 | 1542 | 1329 | 227 | |||
| 3144 | iOS 4 | 4.0.2 | Aug. 11, 2010 | June 21, 2010 | 132 | 1569 | 1384 | 234 | |||
| 3145 | iPhone OS 3 | 3.0.1 | July 31, 2009 | June 17, 2009 | 132 | 1576 | 1399 | 237 | |||
| 3146 | iPhone OS 2 | 1.1.5 | July 15, 2008 | July 11, 2008 | 133 | 1588 | 1394 | 235 | |||
| 3147 | iPhone OS 1 | 1.0.2 | Aug. 21, 2007 | June 29, 2007 | 132 | 1593 | 1395 | 236 | |||
| 3148 | iOS7.1 | 7.1.2 | 131 | 1440 | 1168 | 197 | |||||
| 3149 | iOS6.1 | 6.1.6 | 131 | 1464 | 1236 | 211 | |||||
| 3150 | iOS6.0 | 6.0.2 | 131 | 1473 | 1254 | 215 | |||||
| 3151 | iOS5.1 | 5.1.1 | 131 | 1483 | 1307 | 225 | |||||
| 3152 | iOS4.3 | 4.3.5 | 131 | 1561 | 1357 | 233 | |||||
| 3153 | iOS4.2 | 4.2.9 | 131 | 1563 | 1362 | 233 | |||||
| 3154 | iOS4.1 | 4.1 | 132 | 1566 | 1374 | 233 | |||||
| 3155 | iOS3.2 | 3.2.2 | 132 | 1570 | 1389 | 235 | |||||
| 3156 | iOS3.1 | 3.1.3 | 132 | 1573 | 1397 | 235 | |||||
| 3157 | iOS2.2 | 2.2.1 | 132 | 1584 | 1393 | 231 | |||||
| 3158 | iOS2.1 | 2.1.1 | 132 | 1588 | 1394 | 235 | |||||
| 3159 | iOS2.0 | 2.0.2 | 133 | 1588 | 1393 | 235 | |||||
| 3160 | iOS16.2 | 16.2 | 18 | 165 | 231 | 54 |
| No | CVSS3 CVSS2 |
Level Attach Vector |
Title | CWE | CVE | cpe23Uri | or higher | or less | more than | less than | Update date Published date |
Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 3131 |
- 4.3 |
MEDIUM | Mobile Safari in Apple iOS before 7 allows remote attackers to spoof the URL bar via a crafted web site. |
CWE-20
Improper Input Validation |
CVE-2013-5152 |
cpe:2.3:o:apple:iphone_os:6.1:* cpe:2.3:o:apple:iphone_os:6.1.3:* cpe:2.3:o:apple:iphone_os:6.1.2:* cpe:2.3:o:… |
6.1.4 |
2024-11-21 10:57 2013-09-19 |
Show | GitHub Exploit DB Packet Storm | |||
| 3132 |
- 4.3 |
MEDIUM | Mobile Safari in Apple iOS before 7 does not prevent HTML interpretation of a document served with a text/plain content type, which allows remote attackers to conduct cross-site scripting (XSS) attac… |
CWE-79
Cross-site Scripting |
CVE-2013-5151 |
cpe:2.3:o:apple:iphone_os:6.1:* cpe:2.3:o:apple:iphone_os:6.1.3:* cpe:2.3:o:apple:iphone_os:6.1.2:* cpe:2.3:o:… |
6.1.4 |
2024-11-21 10:57 2013-09-19 |
Show | GitHub Exploit DB Packet Storm | |||
| 3133 |
- 1.9 |
LOW | The history-clearing feature in Safari in Apple iOS before 7 does not clear the back/forward history of an open tab, which allows physically proximate attackers to obtain sensitive information by lev… |
CWE-200
Information Exposure |
CVE-2013-5150 |
cpe:2.3:o:apple:iphone_os:6.1:* cpe:2.3:o:apple:iphone_os:6.1.3:* cpe:2.3:o:apple:iphone_os:6.1.2:* cpe:2.3:o:… |
6.1.4 |
2024-11-21 10:57 2013-09-19 |
Show | GitHub Exploit DB Packet Storm | |||
| 3134 |
- 4.3 |
MEDIUM | The Push Notifications subsystem in Apple iOS before 7 provides the push-notification token to an app without user approval, which allows attackers to obtain sensitive information via an app that emp… |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2013-5149 |
cpe:2.3:o:apple:iphone_os:6.1:* cpe:2.3:o:apple:iphone_os:6.1.3:* cpe:2.3:o:apple:iphone_os:6.1.2:* cpe:2.3:o:… |
6.1.4 |
2024-11-21 10:57 2013-09-19 |
Show | GitHub Exploit DB Packet Storm | |||
| 3135 |
- 3.7 |
LOW | Passcode Lock in Apple iOS before 7 does not properly manage the lock state, which allows physically proximate attackers to bypass an intended passcode requirement by leveraging a race condition invo… |
CWE-362
Race Condition |
CVE-2013-5147 |
cpe:2.3:o:apple:iphone_os:6.1:* cpe:2.3:o:apple:iphone_os:6.1.3:* cpe:2.3:o:apple:iphone_os:6.1.2:* cpe:2.3:o:… |
6.1.4 |
2024-11-21 10:57 2013-09-19 |
Show | GitHub Exploit DB Packet Storm | |||
| 3136 |
- 6.3 |
MEDIUM | kextd in Kext Management in Apple iOS before 7 does not properly verify authorization for IPC messages, which allows local users to (1) load or (2) unload kernel extensions via a crafted message. |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2013-5145 |
cpe:2.3:o:apple:iphone_os:6.1:* cpe:2.3:o:apple:iphone_os:6.1.3:* cpe:2.3:o:apple:iphone_os:6.1.2:* cpe:2.3:o:… |
6.1.4 |
2024-11-21 10:57 2013-09-19 |
Show | GitHub Exploit DB Packet Storm | |||
| 3137 |
- 4.9 |
MEDIUM | The kernel in Apple iOS before 7 does not initialize unspecified kernel data structures, which allows local users to obtain sensitive information from kernel stack memory via the (1) msgctl API or (2… |
CWE-200
Information Exposure |
CVE-2013-5142 |
cpe:2.3:o:apple:iphone_os:6.1:* cpe:2.3:o:apple:iphone_os:6.1.3:* cpe:2.3:o:apple:iphone_os:6.1.2:* cpe:2.3:o:… |
6.1.4 |
2024-11-21 10:57 2013-09-19 |
Show | GitHub Exploit DB Packet Storm | |||
| 3138 |
- 7.1 |
HIGH | The kernel in Apple iOS before 7 uses an incorrect data size for a certain integer variable, which allows attackers to cause a denial of service (infinite loop and device hang) via a crafted applicat… |
CWE-189
Numeric Errors |
CVE-2013-5141 |
cpe:2.3:o:apple:iphone_os:6.1:* cpe:2.3:o:apple:iphone_os:6.1.3:* cpe:2.3:o:apple:iphone_os:6.1.2:* cpe:2.3:o:… |
6.1.4 |
2024-11-21 10:57 2013-09-19 |
Show | GitHub Exploit DB Packet Storm | |||
| 3139 |
- 7.8 |
HIGH | The kernel in Apple iOS before 7 allows remote attackers to cause a denial of service (assertion failure and device restart) via an invalid packet fragment. |
CWE-20
Improper Input Validation |
CVE-2013-5140 |
cpe:2.3:o:apple:iphone_os:6.1:* cpe:2.3:o:apple:iphone_os:6.1.3:* cpe:2.3:o:apple:iphone_os:6.1.2:* cpe:2.3:o:… |
6.1.4 |
2024-11-21 10:57 2013-09-19 |
Show | GitHub Exploit DB Packet Storm | |||
| 3140 |
- 9.3 |
HIGH | The IOSerialFamily driver in Apple iOS before 7 allows attackers to execute arbitrary code or cause a denial of service (out-of-bounds array access) via a crafted application. |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2013-5139 |
cpe:2.3:o:apple:iphone_os:6.1:* cpe:2.3:o:apple:iphone_os:6.1.3:* cpe:2.3:o:apple:iphone_os:6.1.2:* cpe:2.3:o:… |
6.1.4 |
2024-11-21 10:57 2013-09-19 |
Show | GitHub Exploit DB Packet Storm |