Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
iOS Number Of NVD 3626 CRITICAL 138 HIGH 1666 MEDIUM 1480 LOW 246
URL https://www.apple.com/jp/ios/
Explanation This is the operating system installed on the iPhone provided by Apple.
Tag
  • Mobile
  • Apple

Add Information URL
No Type Name URL
1 https://support.apple.com/en-us/HT201222
2 https://developer.apple.com/documentation/ios-ipados-release-notes
3 https://en.wikipedia.org/wiki/IOS_version_history

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
2551 iOS 26 26.5.1 June 1, 2026 Sept. 15, 2025 1 40 38 1
2552 iOS 18 18.7.9 May 11, 2026 Sept. 16, 2024 8 64 89 8
2553 iOS 17 17.6.1 Aug. 27, 2024 Sept. 18, 2023 9 114 178 22
2554 iOS 16 16.4.1 April 7, 2023 Sept. 12, 2022 25 244 303 56
2555 iOS 15 15.7 Sept. 12, 2022 Sept. 20, 2021 39 395 388 72
2556 iOS 14 14.8 Sept. 13, 2021 July 9, 2020 53 566 495 79
2557 iOS 13 13.7 Sept. 1, 2020 Sept. 19, 2019 65 746 579 96
2558 iOS 12 12.5.1 Jan. 11, 2021 Sept. 17, 2018 84 903 659 108
2559 iOS 11 11.4.1 July 9, 2018 Sept. 19, 2017 94 1068 728 116
2560 iOS 10 10.3.4 July 22, 2019 Sept. 13, 2016 120 1289 828 133
2561 iOS 9 9.3.6 July 22, 2019 Sept. 16, 2015 134 1415 955 149
2562 iOS 8 8.4.1 Aug. 13, 2015 Sept. 17, 2014 132 1470 1168 181
2563 iOS 7 7.0.6 Feb. 21, 2014 Sept. 18, 2013 132 1491 1231 204
2564 iOS 6 6.0.2 Dec. 18, 2012 Sept. 19, 2012 132 1517 1294 216
2565 iOS 5 5.0.1 Nov. 10, 2011 Oct. 12, 2011 132 1586 1368 228
2566 iOS 4 4.0.2 Aug. 11, 2010 June 21, 2010 133 1613 1423 235
2567 iPhone OS 3 3.0.1 July 31, 2009 June 17, 2009 133 1620 1438 238
2568 iPhone OS 2 1.1.5 July 15, 2008 July 11, 2008 134 1632 1433 236
2569 iPhone OS 1 1.0.2 Aug. 21, 2007 June 29, 2007 133 1637 1434 237
2570 iOS7.1 7.1.2 132 1484 1207 198
2571 iOS6.1 6.1.6 132 1508 1275 212
2572 iOS6.0 6.0.2 132 1517 1293 216
2573 iOS5.1 5.1.1 132 1527 1346 226
2574 iOS4.3 4.3.5 132 1605 1396 234
2575 iOS4.2 4.2.9 132 1607 1401 234
2576 iOS4.1 4.1 133 1610 1413 234
2577 iOS3.2 3.2.2 133 1614 1428 236
2578 iOS3.1 3.1.3 133 1617 1436 236
2579 iOS2.2 2.2.1 133 1628 1432 232
2580 iOS2.1 2.1.1 133 1632 1433 236
2581 iOS2.0 2.0.2 134 1632 1432 236
2582 iOS16.2 16.2 19 209 270 55
2583 iOS 27 138 1666 1480 246
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
2551 6.5
4.3
MEDIUM
Network
Buffer overflow in FontParser in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows remote attackers to obtain sensitive information from process memory via a crafted… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-4718 cpe:2.3:o:apple:iphone_os:*:* 10.0 2024-11-21 11:52
2016-09-25
Show GitHub Exploit DB Packet Storm
2552 7.8
9.3
HIGH
Local
CoreCrypto in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows attackers to execute arbitrary code or cause a denial of service (out-of-bounds write) via a crafted … CWE-787
 Out-of-bounds Write
CVE-2016-4712 cpe:2.3:o:apple:iphone_os:*:* 10.0 2024-11-21 11:52
2016-09-25
Show GitHub Exploit DB Packet Storm
2553 7.5
5.0
HIGH
Network
CCrypt in corecrypto in CommonCrypto in Apple iOS before 10 and OS X before 10.12 allows attackers to discover cleartext information by leveraging a function call that specifies the same buffer for i… CWE-200
CWE-20
Information Exposure
 Improper Input Validation 
CVE-2016-4711 cpe:2.3:o:apple:iphone_os:*:* 9.3.5 2024-11-21 11:52
2016-09-25
Show GitHub Exploit DB Packet Storm
2554 6.5
4.3
MEDIUM
Network
CFNetwork in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 misparses the Set-Cookie header, which allows remote attackers to obtain sensitive information via a crafted … CWE-200
Information Exposure
CVE-2016-4708 cpe:2.3:o:apple:iphone_os:*:* 10.0 2024-11-21 11:52
2016-09-25
Show GitHub Exploit DB Packet Storm
2555 4.0
2.1
MEDIUM
Local
CFNetwork in Apple iOS before 10 and OS X before 10.12 mishandles Local Storage deletion, which allows local users to discover the visited web sites of arbitrary users via unspecified vectors. CWE-200
CWE-19
Information Exposure
 Data Processing Errors
CVE-2016-4707 cpe:2.3:o:apple:iphone_os:*:* 9.3.5 2024-11-21 11:52
2016-09-25
Show GitHub Exploit DB Packet Storm
2556 9.8
10.0
CRITICAL
Network
Audio in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecifie… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-4702 cpe:2.3:o:apple:iphone_os:*:* 10.0 2024-11-21 11:52
2016-09-25
Show GitHub Exploit DB Packet Storm
2557 7.8
9.3
HIGH
Local
AppleMobileFileIntegrity in Apple iOS before 10 and OS X before 10.12 mishandles process entitlement and Team ID values in the task port inheritance policy, which allows attackers to execute arbitrar… CWE-20
 Improper Input Validation 
CVE-2016-4698 cpe:2.3:o:apple:iphone_os:*:* 9.3.5 2024-11-21 11:52
2016-09-25
Show GitHub Exploit DB Packet Storm
2558 9.8
10.0
CRITICAL
Network
xpointer.c in libxml2 before 2.9.5 (as used in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3, and other products) does not forbid namespace nodes in XPointer ranges, wh… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-4658 cpe:2.3:o:apple:iphone_os:*:* 10.0 2024-11-21 11:52
2016-09-25
Show GitHub Exploit DB Packet Storm
2559 6.1
4.3
MEDIUM
Network
Cross-site scripting (XSS) vulnerability in Safari Reader in Apple iOS before 10 and Safari before 10 allows remote attackers to inject arbitrary web script or HTML via a crafted web site, aka "Unive… CWE-79
Cross-site Scripting
CVE-2016-4618 cpe:2.3:o:apple:iphone_os:*:* 9.3.5 2024-11-21 11:52
2016-09-25
Show GitHub Exploit DB Packet Storm
2560 8.8
6.8
HIGH
Network
WebKit in Apple iOS before 10, Safari before 10, and tvOS before 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a differ… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-4611 cpe:2.3:o:apple:iphone_os:*:* 10.0 2024-11-21 11:52
2016-09-25
Show GitHub Exploit DB Packet Storm