Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
iOS Number Of NVD 3611 CRITICAL 137 HIGH 1663 MEDIUM 1469 LOW 246
URL https://www.apple.com/jp/ios/
Explanation This is the operating system installed on the iPhone provided by Apple.
Tag
  • Mobile
  • Apple
Add Information URL
No Type Name URL
1 https://support.apple.com/en-us/HT201222
2 https://developer.apple.com/documentation/ios-ipados-release-notes
3 https://en.wikipedia.org/wiki/IOS_version_history
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
3171 iOS 26 26.5.1 June 1, 2026 Sept. 15, 2025 0 0 0 0
3172 iOS 18 18.7.9 May 11, 2026 Sept. 16, 2024 0 0 0 0
3173 iOS 17 17.6.1 Aug. 27, 2024 Sept. 18, 2023 8 111 167 22
3174 iOS 16 16.4.1 April 7, 2023 Sept. 12, 2022 24 241 292 56
3175 iOS 15 15.7 Sept. 12, 2022 Sept. 20, 2021 38 392 377 72
3176 iOS 14 14.8 Sept. 13, 2021 July 9, 2020 52 563 484 79
3177 iOS 13 13.7 Sept. 1, 2020 Sept. 19, 2019 64 743 568 96
3178 iOS 12 12.5.1 Jan. 11, 2021 Sept. 17, 2018 83 900 648 108
3179 iOS 11 11.4.1 July 9, 2018 Sept. 19, 2017 93 1065 717 116
3180 iOS 10 10.3.4 July 22, 2019 Sept. 13, 2016 119 1286 817 133
3181 iOS 9 9.3.6 July 22, 2019 Sept. 16, 2015 133 1412 944 149
3182 iOS 8 8.4.1 Aug. 13, 2015 Sept. 17, 2014 131 1467 1157 181
3183 iOS 7 7.0.6 Feb. 21, 2014 Sept. 18, 2013 131 1488 1220 204
3184 iOS 6 6.0.2 Dec. 18, 2012 Sept. 19, 2012 131 1514 1283 216
3185 iOS 5 5.0.1 Nov. 10, 2011 Oct. 12, 2011 131 1583 1357 228
3186 iOS 4 4.0.2 Aug. 11, 2010 June 21, 2010 132 1610 1412 235
3187 iPhone OS 3 3.0.1 July 31, 2009 June 17, 2009 132 1617 1427 238
3188 iPhone OS 2 1.1.5 July 15, 2008 July 11, 2008 133 1629 1422 236
3189 iPhone OS 1 1.0.2 Aug. 21, 2007 June 29, 2007 132 1634 1423 237
3190 iOS7.1 7.1.2 131 1481 1196 198
3191 iOS6.1 6.1.6 131 1505 1264 212
3192 iOS6.0 6.0.2 131 1514 1282 216
3193 iOS5.1 5.1.1 131 1524 1335 226
3194 iOS4.3 4.3.5 131 1602 1385 234
3195 iOS4.2 4.2.9 131 1604 1390 234
3196 iOS4.1 4.1 132 1607 1402 234
3197 iOS3.2 3.2.2 132 1611 1417 236
3198 iOS3.1 3.1.3 132 1614 1425 236
3199 iOS2.2 2.2.1 132 1625 1421 232
3200 iOS2.1 2.1.1 132 1629 1422 236
3201 iOS2.0 2.0.2 133 1629 1421 236
3202 iOS16.2 16.2 18 206 259 55
3203 iOS 27 0 0 0 0
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
3171 -
2.1 		LOW FaceTime in Apple iOS before 7.1 allows physically proximate attackers to obtain sensitive FaceTime contact information by using the lock screen for an invalid FaceTime call. CWE-200
Information Exposure 		CVE-2014-1274 cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:apple:iphone_os:7.0.5:*
cpe:2.3:o:apple:iphone_os:7.0.4:*
cpe:2.3:o:… 		7.0.6 2024-11-21 11:03
2014-03-14 		Show GitHub Exploit DB Packet Storm
3172 -
5.8 		MEDIUM dyld in Apple iOS before 7.1 and Apple TV before 6.1 allows attackers to bypass code-signing requirements by leveraging use of text-relocation instructions in a dynamic library. CWE-20
 Improper Input Validation  		CVE-2014-1273 cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:apple:iphone_os:7.0.5:*
cpe:2.3:o:apple:iphone_os:7.0.4:*
cpe:2.3:o:… 		7.0.6 2024-11-21 11:03
2014-03-14 		Show GitHub Exploit DB Packet Storm
3173 -
6.3 		MEDIUM CrashHouseKeeping in Crash Reporting in Apple iOS before 7.1 and Apple TV before 6.1 allows local users to change arbitrary file permissions by leveraging a symlink. CWE-59
Link Following 		CVE-2014-1272 cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:apple:iphone_os:7.0.5:*
cpe:2.3:o:apple:iphone_os:7.0.4:*
cpe:2.3:o:… 		7.0.6 2024-11-21 11:03
2014-03-14 		Show GitHub Exploit DB Packet Storm
3174 -
7.8 		HIGH CoreCapture in Apple iOS before 7.1 and Apple TV before 6.1 does not properly validate IOKit API calls, which allows attackers to cause a denial of service (assertion failure and device crash) via a … CWE-20
 Improper Input Validation  		CVE-2014-1271 cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:apple:iphone_os:7.0.5:*
cpe:2.3:o:apple:iphone_os:7.0.4:*
cpe:2.3:o:… 		7.0.6 2024-11-21 11:03
2014-03-14 		Show GitHub Exploit DB Packet Storm
3175 -
5.8 		MEDIUM The Configuration Profiles component in Apple iOS before 7.1 and Apple TV before 6.1 does not properly evaluate the expiration date of a mobile configuration profile, which allows attackers to bypass… CWE-20
 Improper Input Validation  		CVE-2014-1267 cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:apple:iphone_os:7.0.5:*
cpe:2.3:o:apple:iphone_os:7.0.4:*
cpe:2.3:o:… 		7.0.6 2024-11-21 11:03
2014-03-14 		Show GitHub Exploit DB Packet Storm
3176 -
5.0 		MEDIUM TelephonyUI Framework in Apple iOS 7 before 7.1, when Safari is used, does not require user confirmation for FaceTime audio calls, which allows remote attackers to obtain telephone number or e-mail a… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-6835 cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:apple:iphone_os:7.0.5:*
cpe:2.3:o:apple:iphone_os:7.0.4:*
cpe:2.3:o:… 		7.0.6 2024-11-21 10:59
2014-03-14 		Show GitHub Exploit DB Packet Storm
3177 -
8.8 		HIGH Backup in Apple iOS before 7.1 does not properly restrict symlinks, which allows remote attackers to overwrite files during a restore operation via crafted backup data. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-5133 cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:apple:iphone_os:7.0.5:*
cpe:2.3:o:apple:iphone_os:7.0.4:*
cpe:2.3:o:… 		7.0.6 2024-11-21 10:57
2014-03-14 		Show GitHub Exploit DB Packet Storm
3178 7.4
5.8 		HIGH
Network 		The SSLVerifySignedServerKeyExchange function in libsecurity_ssl/lib/sslKeyExchange.c in the Secure Transport feature in the Data Security component in Apple iOS 6.x before 6.1.6 and 7.x before 7.0.6… CWE-295
Improper Certificate Validation  		CVE-2014-1266 cpe:2.3:o:apple:iphone_os:*:* 7.0
6.0

7.0.6
6.1.6 		2024-11-21 11:03
2014-02-23 		Show GitHub Exploit DB Packet Storm
3179 4.6
4.9 		MEDIUM
Physics 		The iCloud subsystem in Apple iOS before 7.1 allows physically proximate attackers to bypass an intended password requirement, and turn off the Find My iPhone service or complete a Delete Account act… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-2019 cpe:2.3:o:apple:iphone_os:*:* 7.1 2024-11-21 11:05
2014-02-18 		Show GitHub Exploit DB Packet Storm
3180 -
7.5 		HIGH Double free vulnerability in Apple Pages 2.x before 2.1 and 5.x before 5.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Microsoft W… CWE-415
 Double Free 		CVE-2014-1252 cpe:2.3:o:apple:iphone_os:*:* 7.0 2024-11-21 11:03
2014-01-25 		Show GitHub Exploit DB Packet Storm