Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
iOS Number Of NVD 3540 CRITICAL 137 HIGH 1622 MEDIUM 1440 LOW 245
URL https://www.apple.com/jp/ios/
Explanation This is the operating system installed on the iPhone provided by Apple.
Tag
  • Mobile
  • Apple
Add Information URL
No Type Name URL
1 https://support.apple.com/en-us/HT201222
2 https://developer.apple.com/documentation/ios-ipados-release-notes
3 https://en.wikipedia.org/wiki/IOS_version_history
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
3531 iOS17 17.6.1 Aug. 27, 2024 Sept. 18, 2023 8 70 138 21
3532 iOS16 16.4.1 April 7, 2023 Sept. 12, 2022 24 200 263 55
3533 iOS 15 15.7 Sept. 12, 2022 Sept. 20, 2021 38 351 348 71
3534 iOS 14 14.8 Sept. 13, 2021 July 9, 2020 52 522 455 78
3535 iOS 13 13.7 Sept. 1, 2020 Sept. 19, 2019 64 702 539 95
3536 iOS 12 12.5.1 Jan. 11, 2021 Sept. 17, 2018 83 859 619 107
3537 iOS 11 11.4.1 July 9, 2018 Sept. 19, 2017 93 1024 688 115
3538 iOS 10 10.3.4 July 22, 2019 Sept. 13, 2016 119 1245 788 132
3539 iOS 9 9.3.6 July 22, 2019 Sept. 16, 2015 133 1371 915 148
3540 iOS 8 8.4.1 Aug. 13, 2015 Sept. 17, 2014 131 1426 1128 180
3541 iOS 7 7.0.6 Feb. 21, 2014 Sept. 18, 2013 131 1447 1191 203
3542 iOS 6 6.0.2 Dec. 18, 2012 Sept. 19, 2012 131 1473 1254 215
3543 iOS 5 5.0.1 Nov. 10, 2011 Oct. 12, 2011 131 1542 1328 227
3544 iOS 4 4.0.2 Aug. 11, 2010 June 21, 2010 132 1569 1383 234
3545 iPhone OS 3 3.0.1 July 31, 2009 June 17, 2009 132 1576 1398 237
3546 iPhone OS 2 1.1.5 July 15, 2008 July 11, 2008 133 1588 1393 235
3547 iPhone OS 1 1.0.2 Aug. 21, 2007 June 29, 2007 132 1593 1394 236
3548 iOS7.1 7.1.2 131 1440 1167 197
3549 iOS6.1 6.1.6 131 1464 1235 211
3550 iOS6.0 6.0.2 131 1473 1253 215
3551 iOS5.1 5.1.1 131 1483 1306 225
3552 iOS4.3 4.3.5 131 1561 1356 233
3553 iOS4.2 4.2.9 131 1563 1361 233
3554 iOS4.1 4.1 132 1566 1373 233
3555 iOS3.2 3.2.2 132 1570 1388 235
3556 iOS3.1 3.1.3 132 1573 1396 235
3557 iOS2.2 2.2.1 132 1584 1392 231
3558 iOS2.1 2.1.1 132 1588 1393 235
3559 iOS2.0 2.0.2 133 1588 1392 235
3560 iOS16.2 16.2 18 165 230 54
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
3531 -
10.0 		HIGH Heap-based buffer overflow in the xmlParseAttValueComplex function in parser.c in libxml2 before 2.7.0 allows context-dependent attackers to cause a denial of service (crash) or execute arbitrary cod… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2008-3529 cpe:2.3:o:apple:iphone_os:*:* 3.0 2026-04-23 09:35
2008-09-13 		Show GitHub Exploit DB Packet Storm
3532 -
9.3 		HIGH Use-after-free vulnerability in WebKit in Apple iPod touch 1.1 through 2.0.2, and iPhone 1.0 through 2.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (application… CWE-399
 Resource Management Errors 		CVE-2008-3632 cpe:2.3:o:apple:iphone_os:1.1.2:*
cpe:2.3:o:apple:iphone_os:1.1.1:* 		2026-04-23 09:35
2008-09-11 		Show GitHub Exploit DB Packet Storm
3533 9.8
7.5 		CRITICAL
Network 		The Networking subsystem in Apple iPod touch 2.0 through 2.0.2, and iPhone 2.0 through 2.0.2, uses predictable TCP initial sequence numbers, which allows remote attackers to spoof or hijack a TCP con… CWE-330
 Use of Insufficiently Random Values 		CVE-2008-3612 cpe:2.3:o:apple:iphone_os:*:* 2.0.0 2.0.2 2026-04-23 09:35
2008-09-11 		Show GitHub Exploit DB Packet Storm
3534 6.5
4.3 		MEDIUM
Network 		libxml2 2.6.32 and earlier does not properly detect recursion during entity expansion in an attribute value, which allows context-dependent attackers to cause a denial of service (memory and CPU cons… CWE-776
XML Entity Expansion 		CVE-2008-3281 cpe:2.3:o:apple:iphone_os:*:* 1.0.0 3.0 2026-04-23 09:35
2008-08-28 		Show GitHub Exploit DB Packet Storm
3535 -
4.6 		MEDIUM Unspecified vulnerability in Passcode Lock in Apple iPhone 1.0 through 1.1.2 allows users with physical access to execute applications without entering the passcode via vectors related to emergency c… NVD-CWE-Other
CVE-2008-0034 cpe:2.3:o:apple:iphone_os:1.1.2:*
cpe:2.3:o:apple:iphone_os:1.1.1:*
cpe:2.3:o:apple:iphone_os:1.0.2:*
cpe:2.3:… 		2026-04-23 09:35
2008-01-16 		Show GitHub Exploit DB Packet Storm
3536 -
7.5 		HIGH Apple iPhone 1.1.1, with Bluetooth enabled, allows physically proximate attackers to cause a denial of service (application termination) and execute arbitrary code via crafted Service Discovery Proto… CWE-20
 Improper Input Validation  		CVE-2007-3753 cpe:2.3:o:apple:iphone_os:1.0.2:*
cpe:2.3:o:apple:iphone_os:1.0.1:* 		2026-04-23 09:35
2007-09-28 		Show GitHub Exploit DB Packet Storm
3537 -
4.3 		MEDIUM Mail in Apple iPhone 1.1.1, when using SSL, does not warn the user when the mail server changes or is not trusted, which might allow remote attackers to steal credentials and read email via a man-in-… CWE-287
Improper Authentication 		CVE-2007-3754 cpe:2.3:o:apple:iphone_os:1.0.2:*
cpe:2.3:o:apple:iphone_os:1.0.1:* 		2026-04-23 09:35
2007-09-28 		Show GitHub Exploit DB Packet Storm
3538 -
4.3 		MEDIUM Mail in Apple iPhone 1.1.1 allows remote user-assisted attackers to force the iPhone user to make calls to arbitrary telephone numbers via a "tel:" link, which does not prompt the user before dialing… CWE-20
 Improper Input Validation  		CVE-2007-3755 cpe:2.3:o:apple:iphone_os:1.0.2:*
cpe:2.3:o:apple:iphone_os:1.0.1:* 		2026-04-23 09:35
2007-09-28 		Show GitHub Exploit DB Packet Storm
3539 -
9.3 		HIGH Multiple heap-based buffer overflows in the Perl Compatible Regular Expressions (PCRE) library in the JavaScript engine in WebKit in Apple Safari 3 Beta before Update 3.0.3, and iPhone before 1.0.1, … CWE-119
NVD-CWE-noinfo
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-3944 cpe:2.3:o:apple:iphone_os:*:* 1.0.0 2026-04-23 09:35
2007-07-24 		Show GitHub Exploit DB Packet Storm
3540 -
4.3 		MEDIUM Race condition in Apple Safari 3 Beta before 3.0.2 on Mac OS X, Windows XP, Windows Vista, and iPhone before 1.0.1, allows remote attackers to bypass the JavaScript security model and modify pages ou… CWE-79
CWE-362
Cross-site Scripting
Race Condition 		CVE-2007-2400 cpe:2.3:o:apple:iphone_os:*:* 1.0 2026-04-23 09:35
2007-06-26 		Show GitHub Exploit DB Packet Storm