Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
iOS Number Of NVD 3611 CRITICAL 137 HIGH 1663 MEDIUM 1469 LOW 246
URL https://www.apple.com/jp/ios/
Explanation This is the operating system installed on the iPhone provided by Apple.
Tag
  • Mobile
  • Apple
Add Information URL
No Type Name URL
1 https://support.apple.com/en-us/HT201222
2 https://developer.apple.com/documentation/ios-ipados-release-notes
3 https://en.wikipedia.org/wiki/IOS_version_history
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
3491 iOS17 17.6.1 Aug. 27, 2024 Sept. 18, 2023 8 111 167 22
3492 iOS16 16.4.1 April 7, 2023 Sept. 12, 2022 24 241 292 56
3493 iOS 15 15.7 Sept. 12, 2022 Sept. 20, 2021 38 392 377 72
3494 iOS 14 14.8 Sept. 13, 2021 July 9, 2020 52 563 484 79
3495 iOS 13 13.7 Sept. 1, 2020 Sept. 19, 2019 64 743 568 96
3496 iOS 12 12.5.1 Jan. 11, 2021 Sept. 17, 2018 83 900 648 108
3497 iOS 11 11.4.1 July 9, 2018 Sept. 19, 2017 93 1065 717 116
3498 iOS 10 10.3.4 July 22, 2019 Sept. 13, 2016 119 1286 817 133
3499 iOS 9 9.3.6 July 22, 2019 Sept. 16, 2015 133 1412 944 149
3500 iOS 8 8.4.1 Aug. 13, 2015 Sept. 17, 2014 131 1467 1157 181
3501 iOS 7 7.0.6 Feb. 21, 2014 Sept. 18, 2013 131 1488 1220 204
3502 iOS 6 6.0.2 Dec. 18, 2012 Sept. 19, 2012 131 1514 1283 216
3503 iOS 5 5.0.1 Nov. 10, 2011 Oct. 12, 2011 131 1583 1357 228
3504 iOS 4 4.0.2 Aug. 11, 2010 June 21, 2010 132 1610 1412 235
3505 iPhone OS 3 3.0.1 July 31, 2009 June 17, 2009 132 1617 1427 238
3506 iPhone OS 2 1.1.5 July 15, 2008 July 11, 2008 133 1629 1422 236
3507 iPhone OS 1 1.0.2 Aug. 21, 2007 June 29, 2007 132 1634 1423 237
3508 iOS7.1 7.1.2 131 1481 1196 198
3509 iOS6.1 6.1.6 131 1505 1264 212
3510 iOS6.0 6.0.2 131 1514 1282 216
3511 iOS5.1 5.1.1 131 1524 1335 226
3512 iOS4.3 4.3.5 131 1602 1385 234
3513 iOS4.2 4.2.9 131 1604 1390 234
3514 iOS4.1 4.1 132 1607 1402 234
3515 iOS3.2 3.2.2 132 1611 1417 236
3516 iOS3.1 3.1.3 132 1614 1425 236
3517 iOS2.2 2.2.1 132 1625 1421 232
3518 iOS2.1 2.1.1 132 1629 1422 236
3519 iOS2.0 2.0.2 133 1629 1421 236
3520 iOS16.2 16.2 18 206 259 55
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
3491 -
6.8 		MEDIUM Use-after-free vulnerability in the WebSockets implementation in Google Chrome before 11.0.696.57 allows remote attackers to cause a denial of service or possibly have unspecified other impact via un… CWE-416
 Use After Free 		CVE-2011-1449 cpe:2.3:o:apple:iphone_os:*:* 5.0 2024-11-21 10:26
2011-05-4 		Show GitHub Exploit DB Packet Storm
3492 -
4.3 		MEDIUM The generate-id XPath function in libxslt in Apple iOS 4.3.x before 4.3.2 allows remote attackers to obtain potentially sensitive information about heap memory addresses via a crafted web site. NOTE… CWE-200
Information Exposure 		CVE-2011-0195 cpe:2.3:o:apple:iphone_os:4.3.1:*
cpe:2.3:o:apple:iphone_os:4.3.0:* 		2024-11-21 10:23
2011-04-16 		Show GitHub Exploit DB Packet Storm
3493 -
7.5 		HIGH Google Chrome before 10.0.648.204 does not properly handle SVG text, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead… CWE-20
 Improper Input Validation  		CVE-2011-1296 cpe:2.3:o:apple:iphone_os:*:* 5.0 2024-11-21 10:26
2011-03-26 		Show GitHub Exploit DB Packet Storm
3494 -
7.5 		HIGH WebKit, as used in Google Chrome before 10.0.648.204 and Apple Safari before 5.0.6, does not properly handle node parentage, which allows remote attackers to cause a denial of service (DOM tree corru… CWE-20
 Improper Input Validation  		CVE-2011-1295 cpe:2.3:o:apple:iphone_os:*:* 5.0 2024-11-21 10:26
2011-03-26 		Show GitHub Exploit DB Packet Storm
3495 -
7.5 		HIGH Use-after-free vulnerability in the HTMLCollection implementation in Google Chrome before 10.0.648.204 allows remote attackers to cause a denial of service or possibly have unspecified other impact v… CWE-416
 Use After Free 		CVE-2011-1293 cpe:2.3:o:apple:iphone_os:*:* 5.0 2024-11-21 10:26
2011-03-26 		Show GitHub Exploit DB Packet Storm
3496 -
5.0 		MEDIUM The stateless address autoconfiguration (aka SLAAC) functionality in the IPv6 networking implementation in Apple iOS before 4.3 and Apple TV before 4.2 places the MAC address into the IPv6 address, w… CWE-200
Information Exposure 		CVE-2011-1418 cpe:2.3:o:apple:iphone_os:4.1:*
cpe:2.3:o:apple:iphone_os:4.0:*
cpe:2.3:o:apple:iphone_os:4.0.2:*
cpe:2.3:o:ap… 		4.2 2024-11-21 10:26
2011-03-12 		Show GitHub Exploit DB Packet Storm
3497 -
4.3 		MEDIUM WebKit, as used in Apple Safari before 5.0.4 and iOS before 4.3, does not properly handle unspecified "cached resources," which allows remote attackers to cause a denial of service (resource unavaila… CWE-20
 Improper Input Validation  		CVE-2011-0163 cpe:2.3:o:apple:iphone_os:4.1:*
cpe:2.3:o:apple:iphone_os:4.0:*
cpe:2.3:o:apple:iphone_os:4.0.2:*
cpe:2.3:o:ap… 		4.2 2024-11-21 10:23
2011-03-12 		Show GitHub Exploit DB Packet Storm
3498 -
7.8 		HIGH Wi-Fi in Apple iOS before 4.3 and Apple TV before 4.2 does not properly perform bounds checking for Wi-Fi frames, which allows remote attackers to cause a denial of service (device reset) via unspeci… CWE-20
 Improper Input Validation  		CVE-2011-0162 cpe:2.3:o:apple:iphone_os:4.1:*
cpe:2.3:o:apple:iphone_os:4.0:*
cpe:2.3:o:apple:iphone_os:4.0.2:*
cpe:2.3:o:ap… 		4.2 2024-11-21 10:23
2011-03-12 		Show GitHub Exploit DB Packet Storm
3499 -
4.3 		MEDIUM WebKit, as used in Apple Safari before 5.0.4 and iOS before 4.3, does not properly handle the Attr.style accessor, which allows remote attackers to bypass the Same Origin Policy and inject Cascading … CWE-264
CWE-20
Permissions, Privileges, and Access Controls
 Improper Input Validation  		CVE-2011-0161 cpe:2.3:o:apple:iphone_os:4.1:*
cpe:2.3:o:apple:iphone_os:4.0:*
cpe:2.3:o:apple:iphone_os:4.0.2:*
cpe:2.3:o:ap… 		4.2 2024-11-21 10:23
2011-03-12 		Show GitHub Exploit DB Packet Storm
3500 -
5.0 		MEDIUM WebKit, as used in Apple Safari before 5.0.4 and iOS before 4.3, does not properly handle redirects in conjunction with HTTP Basic Authentication, which might allow remote web servers to capture cred… CWE-20
 Improper Input Validation  		CVE-2011-0160 cpe:2.3:o:apple:iphone_os:4.1:*
cpe:2.3:o:apple:iphone_os:4.0:*
cpe:2.3:o:apple:iphone_os:4.0.2:*
cpe:2.3:o:ap… 		4.2 2024-11-21 10:23
2011-03-12 		Show GitHub Exploit DB Packet Storm