Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
iOS Number Of NVD 3626 CRITICAL 138 HIGH 1666 MEDIUM 1480 LOW 246
URL https://www.apple.com/jp/ios/
Explanation This is the operating system installed on the iPhone provided by Apple.
Tag
  • Apple
  • Mobile

Add Information URL
No Type Name URL
1 https://support.apple.com/en-us/HT201222
2 https://developer.apple.com/documentation/ios-ipados-release-notes
3 https://en.wikipedia.org/wiki/IOS_version_history

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
3581 iOS 26 26.5.1 June 1, 2026 Sept. 15, 2025 1 40 38 1
3582 iOS 18 18.7.9 May 11, 2026 Sept. 16, 2024 8 64 89 8
3583 iOS 17 17.6.1 Aug. 27, 2024 Sept. 18, 2023 9 114 178 22
3584 iOS 16 16.4.1 April 7, 2023 Sept. 12, 2022 25 244 303 56
3585 iOS 15 15.7 Sept. 12, 2022 Sept. 20, 2021 39 395 388 72
3586 iOS 14 14.8 Sept. 13, 2021 July 9, 2020 53 566 495 79
3587 iOS 13 13.7 Sept. 1, 2020 Sept. 19, 2019 65 746 579 96
3588 iOS 12 12.5.1 Jan. 11, 2021 Sept. 17, 2018 84 903 659 108
3589 iOS 11 11.4.1 July 9, 2018 Sept. 19, 2017 94 1068 728 116
3590 iOS 10 10.3.4 July 22, 2019 Sept. 13, 2016 120 1289 828 133
3591 iOS 9 9.3.6 July 22, 2019 Sept. 16, 2015 134 1415 955 149
3592 iOS 8 8.4.1 Aug. 13, 2015 Sept. 17, 2014 132 1470 1168 181
3593 iOS 7 7.0.6 Feb. 21, 2014 Sept. 18, 2013 132 1491 1231 204
3594 iOS 6 6.0.2 Dec. 18, 2012 Sept. 19, 2012 132 1517 1294 216
3595 iOS 5 5.0.1 Nov. 10, 2011 Oct. 12, 2011 132 1586 1368 228
3596 iOS 4 4.0.2 Aug. 11, 2010 June 21, 2010 133 1613 1423 235
3597 iPhone OS 3 3.0.1 July 31, 2009 June 17, 2009 133 1620 1438 238
3598 iPhone OS 2 1.1.5 July 15, 2008 July 11, 2008 134 1632 1433 236
3599 iPhone OS 1 1.0.2 Aug. 21, 2007 June 29, 2007 133 1637 1434 237
3600 iOS7.1 7.1.2 132 1484 1207 198
3601 iOS6.1 6.1.6 132 1508 1275 212
3602 iOS6.0 6.0.2 132 1517 1293 216
3603 iOS5.1 5.1.1 132 1527 1346 226
3604 iOS4.3 4.3.5 132 1605 1396 234
3605 iOS4.2 4.2.9 132 1607 1401 234
3606 iOS4.1 4.1 133 1610 1413 234
3607 iOS3.2 3.2.2 133 1614 1428 236
3608 iOS3.1 3.1.3 133 1617 1436 236
3609 iOS2.2 2.2.1 133 1628 1432 232
3610 iOS2.1 2.1.1 133 1632 1433 236
3611 iOS2.0 2.0.2 134 1632 1432 236
3612 iOS16.2 16.2 19 209 270 55
3613 iOS 27 138 1666 1480 246
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
3581 -
5.0
MEDIUM The WebKit component in Safari in Apple iPhone OS before 3.1, and iPhone OS before 3.1.1 for iPod touch, does not remove usernames and passwords from URLs sent in Referer headers, which allows remote… CWE-200
Information Exposure
CVE-2009-2797 cpe:2.3:o:apple:iphone_os:*:*


3.1.1
3.1
2026-04-23 09:35
2009-09-11
Show GitHub Exploit DB Packet Storm
3582 -
2.1
LOW The UIKit component in Apple iPhone OS 3.0, and iPhone OS 3.0.1 for iPod touch, allows physically proximate attackers to discover a password by watching a user undo deletions of characters in the pas… CWE-200
Information Exposure
CVE-2009-2796 cpe:2.3:o:apple:iphone_os:3.0:*
cpe:2.3:o:apple:iphone_os:3.0.1:*
2026-04-23 09:35
2009-09-11
Show GitHub Exploit DB Packet Storm
3583 -
7.2
HIGH Heap-based buffer overflow in the Recovery Mode component in Apple iPhone OS before 3.1, and iPhone OS before 3.1.1 for iPod touch, allows local users to bypass the passcode requirement and access ar… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2009-2795 cpe:2.3:o:apple:iphone_os:*:*


3.1.1
3.1
2026-04-23 09:35
2009-09-11
Show GitHub Exploit DB Packet Storm
3584 -
4.6
MEDIUM The Exchange Support component in Apple iPhone OS before 3.1, and iPhone OS before 3.1.1 for iPod touch, does not properly implement the "Maximum inactivity time lock" functionality, which allows loc… CWE-362
Race Condition
CVE-2009-2794 cpe:2.3:o:apple:iphone_os:3.0:-
cpe:2.3:o:apple:iphone_os:3.0:*
cpe:2.3:o:apple:iphone_os:3.0.1:*
cpe:2.3:o:ap…
2026-04-23 09:35
2009-09-11
Show GitHub Exploit DB Packet Storm
3585 -
2.1
LOW The MobileMail component in Apple iPhone OS 3.0 and 3.0.1, and iPhone OS 3.0 for iPod touch, lists deleted e-mail messages in Spotlight search results, which might allow local users to obtain sensiti… CWE-264
Permissions, Privileges, and Access Controls
CVE-2009-2207 cpe:2.3:o:apple:iphone_os:3.0:-
cpe:2.3:o:apple:iphone_os:3.0:*
cpe:2.3:o:apple:iphone_os:3.0.1:*
2026-04-23 09:35
2009-09-11
Show GitHub Exploit DB Packet Storm
3586 -
6.8
MEDIUM Multiple heap-based buffer overflows in the AudioCodecs library in the CoreAudio component in Apple iPhone OS before 3.1, and iPhone OS before 3.1.1 for iPod touch, allow remote attackers to execute … CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2009-2206 cpe:2.3:o:apple:iphone_os:3.0:*
cpe:2.3:o:apple:iphone_os:3.0:*
cpe:2.3:o:apple:iphone_os:3.0.1:*
cpe:2.3:o:ap…

3.0.1
3.1


2026-04-23 09:35
2009-09-11
Show GitHub Exploit DB Packet Storm
3587 -
5.8
MEDIUM Incomplete blacklist vulnerability in WebKit in Apple Safari before 4.0.3, as used on iPhone OS before 3.1, iPhone OS before 3.1.1 for iPod touch, and other platforms, allows remote attackers to spoo… NVD-CWE-Other
CVE-2009-2199 cpe:2.3:o:apple:iphone_os:3.0:*
cpe:2.3:o:apple:iphone_os:3.0:*
cpe:2.3:o:apple:iphone_os:3.0.1:*
cpe:2.3:o:ap…

3.0.1
3.1


2026-04-23 09:35
2009-08-13
Show GitHub Exploit DB Packet Storm
3588 6.5
4.3
MEDIUM
Network
Multiple use-after-free vulnerabilities in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32, and libxml 1.8.17, allow context-dependent attackers to cause a denial of service (application crash) vi… CWE-416
 Use After Free
CVE-2009-2416 cpe:2.3:o:apple:iphone_os:*:* 2.0 4.0 2026-04-23 09:35
2009-08-12
Show GitHub Exploit DB Packet Storm
3589 -
10.0
HIGH Unspecified vulnerability in the CoreTelephony component in Apple iPhone OS before 3.0.1 allows remote attackers to execute arbitrary code, obtain GPS coordinates, or enable the microphone via an SMS… NVD-CWE-noinfo
CVE-2009-2204 cpe:2.3:o:apple:iphone_os:2.1:*
cpe:2.3:o:apple:iphone_os:2.0:*
cpe:2.3:o:apple:iphone_os:2.0.2:*
cpe:2.3:o:ap…
3.0 2026-04-23 09:35
2009-08-4
Show GitHub Exploit DB Packet Storm
3590 -
9.3
HIGH WebKit in Apple Safari before 4.0.2, as used on iPhone OS before 3.1, iPhone OS before 3.1.1 for iPod touch, and other platforms; KHTML in kdelibs in KDE; QtWebKit (aka Qt toolkit); and possibly othe… CWE-189
Numeric Errors
CVE-2009-1725 cpe:2.3:o:apple:iphone_os:3.0:*
cpe:2.3:o:apple:iphone_os:3.0:*
cpe:2.3:o:apple:iphone_os:3.0.1:*
cpe:2.3:o:ap…

3.0.1
3.1


2026-04-23 09:35
2009-07-10
Show GitHub Exploit DB Packet Storm