Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
iOS Number Of NVD 3626 CRITICAL 138 HIGH 1666 MEDIUM 1480 LOW 246
URL https://www.apple.com/jp/ios/
Explanation This is the operating system installed on the iPhone provided by Apple.
Tag
  • Apple
  • Mobile

Add Information URL
No Type Name URL
1 https://support.apple.com/en-us/HT201222
2 https://developer.apple.com/documentation/ios-ipados-release-notes
3 https://en.wikipedia.org/wiki/IOS_version_history

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
3531 iOS 26 26.5.1 June 1, 2026 Sept. 15, 2025 1 40 38 1
3532 iOS 18 18.7.9 May 11, 2026 Sept. 16, 2024 8 64 89 8
3533 iOS 17 17.6.1 Aug. 27, 2024 Sept. 18, 2023 9 114 178 22
3534 iOS 16 16.4.1 April 7, 2023 Sept. 12, 2022 25 244 303 56
3535 iOS 15 15.7 Sept. 12, 2022 Sept. 20, 2021 39 395 388 72
3536 iOS 14 14.8 Sept. 13, 2021 July 9, 2020 53 566 495 79
3537 iOS 13 13.7 Sept. 1, 2020 Sept. 19, 2019 65 746 579 96
3538 iOS 12 12.5.1 Jan. 11, 2021 Sept. 17, 2018 84 903 659 108
3539 iOS 11 11.4.1 July 9, 2018 Sept. 19, 2017 94 1068 728 116
3540 iOS 10 10.3.4 July 22, 2019 Sept. 13, 2016 120 1289 828 133
3541 iOS 9 9.3.6 July 22, 2019 Sept. 16, 2015 134 1415 955 149
3542 iOS 8 8.4.1 Aug. 13, 2015 Sept. 17, 2014 132 1470 1168 181
3543 iOS 7 7.0.6 Feb. 21, 2014 Sept. 18, 2013 132 1491 1231 204
3544 iOS 6 6.0.2 Dec. 18, 2012 Sept. 19, 2012 132 1517 1294 216
3545 iOS 5 5.0.1 Nov. 10, 2011 Oct. 12, 2011 132 1586 1368 228
3546 iOS 4 4.0.2 Aug. 11, 2010 June 21, 2010 133 1613 1423 235
3547 iPhone OS 3 3.0.1 July 31, 2009 June 17, 2009 133 1620 1438 238
3548 iPhone OS 2 1.1.5 July 15, 2008 July 11, 2008 134 1632 1433 236
3549 iPhone OS 1 1.0.2 Aug. 21, 2007 June 29, 2007 133 1637 1434 237
3550 iOS7.1 7.1.2 132 1484 1207 198
3551 iOS6.1 6.1.6 132 1508 1275 212
3552 iOS6.0 6.0.2 132 1517 1293 216
3553 iOS5.1 5.1.1 132 1527 1346 226
3554 iOS4.3 4.3.5 132 1605 1396 234
3555 iOS4.2 4.2.9 132 1607 1401 234
3556 iOS4.1 4.1 133 1610 1413 234
3557 iOS3.2 3.2.2 133 1614 1428 236
3558 iOS3.1 3.1.3 133 1617 1436 236
3559 iOS2.2 2.2.1 133 1628 1432 232
3560 iOS2.1 2.1.1 133 1632 1433 236
3561 iOS2.0 2.0.2 134 1632 1432 236
3562 iOS16.2 16.2 19 209 270 55
3563 iOS 27 138 1666 1480 246
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
3531 -
7.5
HIGH Google Chrome before 9.0.597.94 does not properly handle anonymous blocks, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors tha… CWE-20
 Improper Input Validation 
CVE-2011-0983 cpe:2.3:o:apple:iphone_os:*:* 5.0 2024-11-21 10:25
2011-02-11
Show GitHub Exploit DB Packet Storm
3532 -
7.5
HIGH Google Chrome before 9.0.597.94 does not properly perform event handling for animations, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unkno… CWE-20
 Improper Input Validation 
CVE-2011-0981 cpe:2.3:o:apple:iphone_os:*:* 5.0 2024-11-21 10:25
2011-02-11
Show GitHub Exploit DB Packet Storm
3533 -
6.2
MEDIUM Race condition in Apple iOS 4.0 through 4.1 for iPhone 3G and later allows physically proximate attackers to bypass the passcode lock by making a call from the Emergency Call screen, then quickly pre… CWE-362
Race Condition
CVE-2010-4012 cpe:2.3:o:apple:iphone_os:4.1:*
cpe:2.3:o:apple:iphone_os:4.0:*
2024-11-21 10:20
2010-12-9
Show GitHub Exploit DB Packet Storm
3534 -
7.5
HIGH Double free vulnerability in libxml2 2.7.8 and other versions, as used in Google Chrome before 8.0.552.215 and other products, allows remote attackers to cause a denial of service or possibly have un… CWE-415
 Double Free
CVE-2010-4494 cpe:2.3:o:apple:iphone_os:*:* 4.3.0 2024-11-21 10:21
2010-12-8
Show GitHub Exploit DB Packet Storm
3535 -
6.8
MEDIUM Heap-based buffer overflow in the GSM mobility management implementation in Telephony in Apple iOS before 4.2 on the iPhone and iPad allows remote attackers to execute arbitrary code on the baseband … CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2010-3832 cpe:2.3:o:apple:iphone_os:4.0:*
cpe:2.3:o:apple:iphone_os:4.0.2:*
cpe:2.3:o:apple:iphone_os:4.0.1:*
cpe:2.3:o:…
4.1 2024-11-21 10:19
2010-11-27
Show GitHub Exploit DB Packet Storm
3536 -
4.3
MEDIUM Photos in Apple iOS before 4.2 enables support for HTTP Basic Authentication over an unencrypted connection, which allows man-in-the-middle attackers to read MobileMe account passwords by spoofing a … CWE-200
Information Exposure
CVE-2010-3831 cpe:2.3:o:apple:iphone_os:4.0:*
cpe:2.3:o:apple:iphone_os:4.0.2:*
cpe:2.3:o:apple:iphone_os:4.0.1:*
cpe:2.3:o:…
4.1 2024-11-21 10:19
2010-11-27
Show GitHub Exploit DB Packet Storm
3537 -
7.2
HIGH Networking in Apple iOS before 4.2 accesses an invalid pointer during the processing of packet filter rules, which allows local users to gain privileges via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls
CVE-2010-3830 cpe:2.3:o:apple:iphone_os:4.0:*
cpe:2.3:o:apple:iphone_os:4.0.2:*
cpe:2.3:o:apple:iphone_os:4.0.1:*
cpe:2.3:o:…
4.1 2024-11-21 10:19
2010-11-27
Show GitHub Exploit DB Packet Storm
3538 -
5.8
MEDIUM WebKit in Apple iOS before 4.2 allows remote attackers to bypass the remote image loading setting in Mail via an HTML LINK element with a DNS prefetching property, as demonstrated by an HTML e-mail m… CWE-264
Permissions, Privileges, and Access Controls
CVE-2010-3829 cpe:2.3:o:apple:iphone_os:4.0:*
cpe:2.3:o:apple:iphone_os:4.0.2:*
cpe:2.3:o:apple:iphone_os:4.0.1:*
cpe:2.3:o:…
4.1 2024-11-21 10:19
2010-11-27
Show GitHub Exploit DB Packet Storm
3539 -
4.3
MEDIUM iAd Content Display in Apple iOS before 4.2 allows man-in-the-middle attackers to make calls via a crafted URL in an ad. NVD-CWE-Other
CVE-2010-3828 cpe:2.3:o:apple:iphone_os:4.0:*
cpe:2.3:o:apple:iphone_os:4.0.2:*
cpe:2.3:o:apple:iphone_os:4.0.1:*
cpe:2.3:o:…
4.1 2024-11-21 10:19
2010-11-27
Show GitHub Exploit DB Packet Storm
3540 -
4.3
MEDIUM Apple iOS before 4.2 does not properly validate signatures before displaying a configuration profile in the configuration installation utility, which allows remote attackers to spoof profiles via uns… CWE-20
 Improper Input Validation 
CVE-2010-3827 cpe:2.3:o:apple:iphone_os:4.0:*
cpe:2.3:o:apple:iphone_os:4.0.2:*
cpe:2.3:o:apple:iphone_os:4.0.1:*
cpe:2.3:o:…
4.1 2024-11-21 10:19
2010-11-27
Show GitHub Exploit DB Packet Storm