Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
iOS Number Of NVD 3626 CRITICAL 138 HIGH 1666 MEDIUM 1480 LOW 246
URL https://www.apple.com/jp/ios/
Explanation This is the operating system installed on the iPhone provided by Apple.
Tag
  • Mobile
  • Apple

Add Information URL
No Type Name URL
1 https://support.apple.com/en-us/HT201222
2 https://developer.apple.com/documentation/ios-ipados-release-notes
3 https://en.wikipedia.org/wiki/IOS_version_history

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
2981 iOS 26 26.5.1 June 1, 2026 Sept. 15, 2025 1 40 38 1
2982 iOS 18 18.7.9 May 11, 2026 Sept. 16, 2024 8 64 89 8
2983 iOS 17 17.6.1 Aug. 27, 2024 Sept. 18, 2023 9 114 178 22
2984 iOS 16 16.4.1 April 7, 2023 Sept. 12, 2022 25 244 303 56
2985 iOS 15 15.7 Sept. 12, 2022 Sept. 20, 2021 39 395 388 72
2986 iOS 14 14.8 Sept. 13, 2021 July 9, 2020 53 566 495 79
2987 iOS 13 13.7 Sept. 1, 2020 Sept. 19, 2019 65 746 579 96
2988 iOS 12 12.5.1 Jan. 11, 2021 Sept. 17, 2018 84 903 659 108
2989 iOS 11 11.4.1 July 9, 2018 Sept. 19, 2017 94 1068 728 116
2990 iOS 10 10.3.4 July 22, 2019 Sept. 13, 2016 120 1289 828 133
2991 iOS 9 9.3.6 July 22, 2019 Sept. 16, 2015 134 1415 955 149
2992 iOS 8 8.4.1 Aug. 13, 2015 Sept. 17, 2014 132 1470 1168 181
2993 iOS 7 7.0.6 Feb. 21, 2014 Sept. 18, 2013 132 1491 1231 204
2994 iOS 6 6.0.2 Dec. 18, 2012 Sept. 19, 2012 132 1517 1294 216
2995 iOS 5 5.0.1 Nov. 10, 2011 Oct. 12, 2011 132 1586 1368 228
2996 iOS 4 4.0.2 Aug. 11, 2010 June 21, 2010 133 1613 1423 235
2997 iPhone OS 3 3.0.1 July 31, 2009 June 17, 2009 133 1620 1438 238
2998 iPhone OS 2 1.1.5 July 15, 2008 July 11, 2008 134 1632 1433 236
2999 iPhone OS 1 1.0.2 Aug. 21, 2007 June 29, 2007 133 1637 1434 237
3000 iOS7.1 7.1.2 132 1484 1207 198
3001 iOS6.1 6.1.6 132 1508 1275 212
3002 iOS6.0 6.0.2 132 1517 1293 216
3003 iOS5.1 5.1.1 132 1527 1346 226
3004 iOS4.3 4.3.5 132 1605 1396 234
3005 iOS4.2 4.2.9 132 1607 1401 234
3006 iOS4.1 4.1 133 1610 1413 234
3007 iOS3.2 3.2.2 133 1614 1428 236
3008 iOS3.1 3.1.3 133 1617 1436 236
3009 iOS2.2 2.2.1 133 1628 1432 232
3010 iOS2.1 2.1.1 133 1632 1433 236
3011 iOS2.0 2.0.2 134 1632 1432 236
3012 iOS16.2 16.2 19 209 270 55
3013 iOS 27 138 1666 1480 246
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
2981 -
6.8
MEDIUM The Page Loading functionality in WebKit in Apple Safari before 6.2.7, 7.x before 7.1.7, and 8.x before 8.0.7, as used in Apple iOS before 8.4 and other products, does not properly consider redirects… CWE-254
 7PK - Security Features
CVE-2015-3658 cpe:2.3:o:apple:iphone_os:*:* 8.3 2024-11-21 11:29
2015-07-3
Show GitHub Exploit DB Packet Storm
2982 -
7.8
HIGH CoreText in Apple iOS 8.x through 8.3 allows remote attackers to cause a denial of service (reboot and messaging disruption) via crafted Unicode text that is not properly handled during display trunc… CWE-17
Code
CVE-2015-1157 cpe:2.3:o:apple:iphone_os:8.3:*
cpe:2.3:o:apple:iphone_os:8.2:*
cpe:2.3:o:apple:iphone_os:8.1:*
cpe:2.3:o:appl…
2024-11-21 11:24
2015-05-28
Show GitHub Exploit DB Packet Storm
2983 -
7.5
HIGH The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) before 55.1 does not properly track d… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2014-8146 cpe:2.3:o:apple:iphone_os:*:* 8.2 2024-11-21 11:18
2015-05-26
Show GitHub Exploit DB Packet Storm
2984 3.7
4.3
LOW
Network
The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to c… CWE-310
Cryptographic Issues
CVE-2015-4000 cpe:2.3:o:apple:iphone_os:*:* 8.3 2024-11-21 11:30
2015-05-21
Show GitHub Exploit DB Packet Storm
2985 -
4.3
MEDIUM The page-loading implementation in WebKit, as used in Apple Safari before 6.2.6, 7.x before 7.1.6, and 8.x before 8.0.6, does not properly handle the rel attribute in an A element, which allows remot… CWE-264
Permissions, Privileges, and Access Controls
CVE-2015-1156 cpe:2.3:o:apple:iphone_os:*:* 8.3 2024-11-21 11:24
2015-05-8
Show GitHub Exploit DB Packet Storm
2986 -
4.3
MEDIUM The history implementation in WebKit, as used in Apple Safari before 6.2.6, 7.x before 7.1.6, and 8.x before 8.0.6, allows remote attackers to bypass the Same Origin Policy and read arbitrary files v… CWE-264
Permissions, Privileges, and Access Controls
CVE-2015-1155 cpe:2.3:o:apple:iphone_os:*:* 8.3 2024-11-21 11:24
2015-05-8
Show GitHub Exploit DB Packet Storm
2987 -
6.8
MEDIUM WebKit, as used in Apple Safari before 6.2.6, 7.x before 7.1.6, and 8.x before 8.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application… NVD-CWE-noinfo
CVE-2015-1153 cpe:2.3:o:apple:iphone_os:*:* 8.3 2024-11-21 11:24
2015-05-8
Show GitHub Exploit DB Packet Storm
2988 -
6.8
MEDIUM WebKit, as used in Apple Safari before 6.2.6, 7.x before 7.1.6, and 8.x before 8.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application… NVD-CWE-noinfo
CVE-2015-1152 cpe:2.3:o:apple:iphone_os:*:* 8.3 2024-11-21 11:24
2015-05-8
Show GitHub Exploit DB Packet Storm
2989 -
4.3
MEDIUM Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5 does not properly select X.509 client certificates, which makes it easier for remote attackers to track users via a crafted web site. CWE-310
Cryptographic Issues
CVE-2015-1129 cpe:2.3:o:apple:iphone_os:*:* 8.4.1 2024-11-21 11:24
2015-04-10
Show GitHub Exploit DB Packet Storm
2990 -
4.3
MEDIUM WebKit, as used in Apple iOS before 8.3 and Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5, does not properly handle the userinfo field in FTP URLs, which allows remote attackers t… CWE-20
 Improper Input Validation 
CVE-2015-1126 cpe:2.3:o:apple:iphone_os:*:* 8.2 2024-11-21 11:24
2015-04-10
Show GitHub Exploit DB Packet Storm