Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
iOS Number Of NVD 3626 CRITICAL 138 HIGH 1666 MEDIUM 1480 LOW 246
URL https://www.apple.com/jp/ios/
Explanation This is the operating system installed on the iPhone provided by Apple.
Tag
  • Mobile
  • Apple

Add Information URL
No Type Name URL
1 https://support.apple.com/en-us/HT201222
2 https://developer.apple.com/documentation/ios-ipados-release-notes
3 https://en.wikipedia.org/wiki/IOS_version_history

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
2821 iOS 26 26.5.1 June 1, 2026 Sept. 15, 2025 1 40 38 1
2822 iOS 18 18.7.9 May 11, 2026 Sept. 16, 2024 8 64 89 8
2823 iOS 17 17.6.1 Aug. 27, 2024 Sept. 18, 2023 9 114 178 22
2824 iOS 16 16.4.1 April 7, 2023 Sept. 12, 2022 25 244 303 56
2825 iOS 15 15.7 Sept. 12, 2022 Sept. 20, 2021 39 395 388 72
2826 iOS 14 14.8 Sept. 13, 2021 July 9, 2020 53 566 495 79
2827 iOS 13 13.7 Sept. 1, 2020 Sept. 19, 2019 65 746 579 96
2828 iOS 12 12.5.1 Jan. 11, 2021 Sept. 17, 2018 84 903 659 108
2829 iOS 11 11.4.1 July 9, 2018 Sept. 19, 2017 94 1068 728 116
2830 iOS 10 10.3.4 July 22, 2019 Sept. 13, 2016 120 1289 828 133
2831 iOS 9 9.3.6 July 22, 2019 Sept. 16, 2015 134 1415 955 149
2832 iOS 8 8.4.1 Aug. 13, 2015 Sept. 17, 2014 132 1470 1168 181
2833 iOS 7 7.0.6 Feb. 21, 2014 Sept. 18, 2013 132 1491 1231 204
2834 iOS 6 6.0.2 Dec. 18, 2012 Sept. 19, 2012 132 1517 1294 216
2835 iOS 5 5.0.1 Nov. 10, 2011 Oct. 12, 2011 132 1586 1368 228
2836 iOS 4 4.0.2 Aug. 11, 2010 June 21, 2010 133 1613 1423 235
2837 iPhone OS 3 3.0.1 July 31, 2009 June 17, 2009 133 1620 1438 238
2838 iPhone OS 2 1.1.5 July 15, 2008 July 11, 2008 134 1632 1433 236
2839 iPhone OS 1 1.0.2 Aug. 21, 2007 June 29, 2007 133 1637 1434 237
2840 iOS7.1 7.1.2 132 1484 1207 198
2841 iOS6.1 6.1.6 132 1508 1275 212
2842 iOS6.0 6.0.2 132 1517 1293 216
2843 iOS5.1 5.1.1 132 1527 1346 226
2844 iOS4.3 4.3.5 132 1605 1396 234
2845 iOS4.2 4.2.9 132 1607 1401 234
2846 iOS4.1 4.1 133 1610 1413 234
2847 iOS3.2 3.2.2 133 1614 1428 236
2848 iOS3.1 3.1.3 133 1617 1436 236
2849 iOS2.2 2.2.1 133 1628 1432 232
2850 iOS2.1 2.1.1 133 1632 1433 236
2851 iOS2.0 2.0.2 134 1632 1432 236
2852 iOS16.2 16.2 19 209 270 55
2853 iOS 27 138 1666 1480 246
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
2821 -
4.3
MEDIUM The Audio component in Apple iOS before 9 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted audio file. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2015-5862 cpe:2.3:o:apple:iphone_os:*:* 8.4.1 2024-11-21 11:34
2015-09-18
Show GitHub Exploit DB Packet Storm
2822 -
2.1
LOW SpringBoard in Apple iOS before 9 allows physically proximate attackers to bypass a lock-screen preview-disabled setting, and reply to an audio message, via unspecified vectors. CWE-284
Improper Access Control
CVE-2015-5861 cpe:2.3:o:apple:iphone_os:*:* 8.4.1 2024-11-21 11:34
2015-09-18
Show GitHub Exploit DB Packet Storm
2823 -
5.0
MEDIUM The CFNetwork HTTPProtocol component in Apple iOS before 9 mishandles HSTS state, which allows remote attackers to bypass the Safari private-browsing protection mechanism and track users via a crafte… CWE-200
Information Exposure
CVE-2015-5860 cpe:2.3:o:apple:iphone_os:*:* 8.4.1 2024-11-21 11:34
2015-09-18
Show GitHub Exploit DB Packet Storm
2824 -
5.0
MEDIUM The CFNetwork HTTPProtocol component in Apple iOS before 9 allows remote attackers to bypass the HSTS protection mechanism, and consequently obtain sensitive information, via a crafted URL. CWE-200
Information Exposure
CVE-2015-5858 cpe:2.3:o:apple:iphone_os:*:* 8.4.1 2024-11-21 11:34
2015-09-18
Show GitHub Exploit DB Packet Storm
2825 -
5.0
MEDIUM Mail in Apple iOS before 9 allows remote attackers to use an address-book contact as a spoofed e-mail sender address via unspecified vectors. CWE-254
 7PK - Security Features
CVE-2015-5857 cpe:2.3:o:apple:iphone_os:*:* 8.4.1 2024-11-21 11:34
2015-09-18
Show GitHub Exploit DB Packet Storm
2826 -
4.3
MEDIUM The Application Store component in Apple iOS before 9 allows remote attackers to cause a denial of service to an enterprise-signed app via a crafted ITMS URL. CWE-254
 7PK - Security Features
CVE-2015-5856 cpe:2.3:o:apple:iphone_os:*:* 8.4.1 2024-11-21 11:34
2015-09-18
Show GitHub Exploit DB Packet Storm
2827 -
4.3
MEDIUM Apple iOS before 9 allows attackers to discover the e-mail address of a player via a crafted Game Center app. CWE-200
Information Exposure
CVE-2015-5855 cpe:2.3:o:apple:iphone_os:*:* 8.4.1 2024-11-21 11:33
2015-09-18
Show GitHub Exploit DB Packet Storm
2828 -
2.1
LOW The convenience initializer in the Multipeer Connectivity component in Apple iOS before 9 does not require an encrypted session, which allows local users to obtain cleartext multipeer data via an enc… CWE-200
Information Exposure
CVE-2015-5851 cpe:2.3:o:apple:iphone_os:*:* 8.4.1 2024-11-21 11:33
2015-09-18
Show GitHub Exploit DB Packet Storm
2829 -
2.1
LOW AppleKeyStore in Apple iOS before 9 allows physically proximate attackers to reset the count of incorrect passcode attempts via a device backup. CWE-254
 7PK - Security Features
CVE-2015-5850 cpe:2.3:o:apple:iphone_os:*:* 8.4.1 2024-11-21 11:33
2015-09-18
Show GitHub Exploit DB Packet Storm
2830 -
7.2
HIGH IOAcceleratorFamily in Apple iOS before 9 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2015-5848 cpe:2.3:o:apple:iphone_os:*:* 8.4.1 2024-11-21 11:33
2015-09-18
Show GitHub Exploit DB Packet Storm