Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
iOS Number Of NVD 3611 CRITICAL 137 HIGH 1663 MEDIUM 1469 LOW 246
URL https://www.apple.com/jp/ios/
Explanation This is the operating system installed on the iPhone provided by Apple.
Tag
  • Apple
  • Mobile
Add Information URL
No Type Name URL
1 https://support.apple.com/en-us/HT201222
2 https://developer.apple.com/documentation/ios-ipados-release-notes
3 https://en.wikipedia.org/wiki/IOS_version_history
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
3451 iOS17 17.6.1 Aug. 27, 2024 Sept. 18, 2023 8 111 167 22
3452 iOS16 16.4.1 April 7, 2023 Sept. 12, 2022 24 241 292 56
3453 iOS 15 15.7 Sept. 12, 2022 Sept. 20, 2021 38 392 377 72
3454 iOS 14 14.8 Sept. 13, 2021 July 9, 2020 52 563 484 79
3455 iOS 13 13.7 Sept. 1, 2020 Sept. 19, 2019 64 743 568 96
3456 iOS 12 12.5.1 Jan. 11, 2021 Sept. 17, 2018 83 900 648 108
3457 iOS 11 11.4.1 July 9, 2018 Sept. 19, 2017 93 1065 717 116
3458 iOS 10 10.3.4 July 22, 2019 Sept. 13, 2016 119 1286 817 133
3459 iOS 9 9.3.6 July 22, 2019 Sept. 16, 2015 133 1412 944 149
3460 iOS 8 8.4.1 Aug. 13, 2015 Sept. 17, 2014 131 1467 1157 181
3461 iOS 7 7.0.6 Feb. 21, 2014 Sept. 18, 2013 131 1488 1220 204
3462 iOS 6 6.0.2 Dec. 18, 2012 Sept. 19, 2012 131 1514 1283 216
3463 iOS 5 5.0.1 Nov. 10, 2011 Oct. 12, 2011 131 1583 1357 228
3464 iOS 4 4.0.2 Aug. 11, 2010 June 21, 2010 132 1610 1412 235
3465 iPhone OS 3 3.0.1 July 31, 2009 June 17, 2009 132 1617 1427 238
3466 iPhone OS 2 1.1.5 July 15, 2008 July 11, 2008 133 1629 1422 236
3467 iPhone OS 1 1.0.2 Aug. 21, 2007 June 29, 2007 132 1634 1423 237
3468 iOS7.1 7.1.2 131 1481 1196 198
3469 iOS6.1 6.1.6 131 1505 1264 212
3470 iOS6.0 6.0.2 131 1514 1282 216
3471 iOS5.1 5.1.1 131 1524 1335 226
3472 iOS4.3 4.3.5 131 1602 1385 234
3473 iOS4.2 4.2.9 131 1604 1390 234
3474 iOS4.1 4.1 132 1607 1402 234
3475 iOS3.2 3.2.2 132 1611 1417 236
3476 iOS3.1 3.1.3 132 1614 1425 236
3477 iOS2.2 2.2.1 132 1625 1421 232
3478 iOS2.1 2.1.1 132 1629 1422 236
3479 iOS2.0 2.0.2 133 1629 1421 236
3480 iOS16.2 16.2 18 206 259 55
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
3451 -
4.3 		MEDIUM Cross-site scripting (XSS) vulnerability in Safari in Apple iOS before 5 allows remote web servers to inject arbitrary web script or HTML via a file accompanied by a "Content-Disposition: attachment"… CWE-79
Cross-site Scripting 		CVE-2011-3426 cpe:2.3:o:apple:iphone_os:4.3.5:-
cpe:2.3:o:apple:iphone_os:4.3.5:-
cpe:2.3:o:apple:iphone_os:4.3.5:*
cpe:2.3:… 		2024-11-21 10:30
2011-10-14 		Show GitHub Exploit DB Packet Storm
3452 -
6.8 		MEDIUM Double free vulnerability in OfficeImport in Apple iOS before 5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Excel spreadsheet. CWE-94
Code Injection 		CVE-2011-3261 cpe:2.3:o:apple:iphone_os:4.3.5:-
cpe:2.3:o:apple:iphone_os:4.3.5:-
cpe:2.3:o:apple:iphone_os:4.3.5:*
cpe:2.3:… 		2024-11-21 10:30
2011-10-14 		Show GitHub Exploit DB Packet Storm
3453 -
6.8 		MEDIUM Buffer overflow in OfficeImport in Apple iOS before 5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Microsoft Word document. CWE-94
Code Injection 		CVE-2011-3260 cpe:2.3:o:apple:iphone_os:4.3.5:-
cpe:2.3:o:apple:iphone_os:4.3.5:-
cpe:2.3:o:apple:iphone_os:4.3.5:*
cpe:2.3:… 		2024-11-21 10:30
2011-10-14 		Show GitHub Exploit DB Packet Storm
3454 -
5.0 		MEDIUM The kernel in Apple iOS before 5 and Apple TV before 4.4 does not properly recover memory allocated for incomplete TCP connections, which allows remote attackers to cause a denial of service (resourc… CWE-399
 Resource Management Errors 		CVE-2011-3259 cpe:2.3:o:apple:iphone_os:4.3.5:-
cpe:2.3:o:apple:iphone_os:4.3.5:-
cpe:2.3:o:apple:iphone_os:4.3.5:*
cpe:2.3:… 		2024-11-21 10:30
2011-10-14 		Show GitHub Exploit DB Packet Storm
3455 -
2.1 		LOW The Data Access component in Apple iOS before 5 does not properly handle the existence of multiple user accounts on the same mail server, which allows local users to bypass intended access restrictio… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-3257 cpe:2.3:o:apple:iphone_os:4.3.5:-
cpe:2.3:o:apple:iphone_os:4.3.5:-
cpe:2.3:o:apple:iphone_os:4.3.5:*
cpe:2.3:… 		2024-11-21 10:30
2011-10-14 		Show GitHub Exploit DB Packet Storm
3456 -
4.3 		MEDIUM FreeType 2 before 2.4.7, as used in CoreGraphics in Apple iOS before 5, Mandriva Enterprise Server 5, and possibly other products, allows remote attackers to execute arbitrary code or cause a denial … CWE-94
Code Injection 		CVE-2011-3256 cpe:2.3:o:apple:iphone_os:4.3.5:-
cpe:2.3:o:apple:iphone_os:4.3.5:-
cpe:2.3:o:apple:iphone_os:4.3.5:*
cpe:2.3:… 		2024-11-21 10:30
2011-10-14 		Show GitHub Exploit DB Packet Storm
3457 -
4.3 		MEDIUM CFNetwork in Apple iOS before 5 stores AppleID credentials in an unspecified file, which makes it easier for remote attackers to obtain sensitive information via a crafted application. CWE-255
Credentials Management 		CVE-2011-3255 cpe:2.3:o:apple:iphone_os:4.3.5:-
cpe:2.3:o:apple:iphone_os:4.3.5:-
cpe:2.3:o:apple:iphone_os:4.3.5:*
cpe:2.3:… 		2024-11-21 10:30
2011-10-14 		Show GitHub Exploit DB Packet Storm
3458 -
4.3 		MEDIUM Cross-site scripting (XSS) vulnerability in Calendar in Apple iOS before 5 allows remote attackers to inject arbitrary web script or HTML via an invitation note. CWE-79
Cross-site Scripting 		CVE-2011-3254 cpe:2.3:o:apple:iphone_os:4.3.5:-
cpe:2.3:o:apple:iphone_os:4.3.5:-
cpe:2.3:o:apple:iphone_os:4.3.5:*
cpe:2.3:… 		2024-11-21 10:30
2011-10-14 		Show GitHub Exploit DB Packet Storm
3459 -
2.6 		LOW CalDAV in Apple iOS before 5 does not validate X.509 certificates for SSL sessions, which allows man-in-the-middle attackers to spoof calendar servers and obtain sensitive information via an arbitrar… CWE-200
Information Exposure 		CVE-2011-3253 cpe:2.3:o:apple:iphone_os:4.3.5:-
cpe:2.3:o:apple:iphone_os:4.3.5:-
cpe:2.3:o:apple:iphone_os:4.3.5:*
cpe:2.3:… 		2024-11-21 10:30
2011-10-14 		Show GitHub Exploit DB Packet Storm
3460 -
5.0 		MEDIUM CFNetwork in Apple iOS before 5.0.1 and Mac OS X 10.7 before 10.7.2 does not properly parse URLs, which allows remote attackers to trigger visits to unintended web sites, and transmission of cookies … CWE-200
Information Exposure 		CVE-2011-3246 cpe:2.3:o:apple:iphone_os:4.3.5:-
cpe:2.3:o:apple:iphone_os:4.3.5:-
cpe:2.3:o:apple:iphone_os:4.3.5:*
cpe:2.3:… 		2024-11-21 10:30
2011-10-14 		Show GitHub Exploit DB Packet Storm