Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
iOS Number Of NVD 3626 CRITICAL 138 HIGH 1666 MEDIUM 1480 LOW 246
URL https://www.apple.com/jp/ios/
Explanation This is the operating system installed on the iPhone provided by Apple.
Tag
  • Mobile
  • Apple

Add Information URL
No Type Name URL
1 https://support.apple.com/en-us/HT201222
2 https://developer.apple.com/documentation/ios-ipados-release-notes
3 https://en.wikipedia.org/wiki/IOS_version_history

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
3131 iOS 26 26.5.1 June 1, 2026 Sept. 15, 2025 1 40 38 1
3132 iOS 18 18.7.9 May 11, 2026 Sept. 16, 2024 8 64 89 8
3133 iOS 17 17.6.1 Aug. 27, 2024 Sept. 18, 2023 9 114 178 22
3134 iOS 16 16.4.1 April 7, 2023 Sept. 12, 2022 25 244 303 56
3135 iOS 15 15.7 Sept. 12, 2022 Sept. 20, 2021 39 395 388 72
3136 iOS 14 14.8 Sept. 13, 2021 July 9, 2020 53 566 495 79
3137 iOS 13 13.7 Sept. 1, 2020 Sept. 19, 2019 65 746 579 96
3138 iOS 12 12.5.1 Jan. 11, 2021 Sept. 17, 2018 84 903 659 108
3139 iOS 11 11.4.1 July 9, 2018 Sept. 19, 2017 94 1068 728 116
3140 iOS 10 10.3.4 July 22, 2019 Sept. 13, 2016 120 1289 828 133
3141 iOS 9 9.3.6 July 22, 2019 Sept. 16, 2015 134 1415 955 149
3142 iOS 8 8.4.1 Aug. 13, 2015 Sept. 17, 2014 132 1470 1168 181
3143 iOS 7 7.0.6 Feb. 21, 2014 Sept. 18, 2013 132 1491 1231 204
3144 iOS 6 6.0.2 Dec. 18, 2012 Sept. 19, 2012 132 1517 1294 216
3145 iOS 5 5.0.1 Nov. 10, 2011 Oct. 12, 2011 132 1586 1368 228
3146 iOS 4 4.0.2 Aug. 11, 2010 June 21, 2010 133 1613 1423 235
3147 iPhone OS 3 3.0.1 July 31, 2009 June 17, 2009 133 1620 1438 238
3148 iPhone OS 2 1.1.5 July 15, 2008 July 11, 2008 134 1632 1433 236
3149 iPhone OS 1 1.0.2 Aug. 21, 2007 June 29, 2007 133 1637 1434 237
3150 iOS7.1 7.1.2 132 1484 1207 198
3151 iOS6.1 6.1.6 132 1508 1275 212
3152 iOS6.0 6.0.2 132 1517 1293 216
3153 iOS5.1 5.1.1 132 1527 1346 226
3154 iOS4.3 4.3.5 132 1605 1396 234
3155 iOS4.2 4.2.9 132 1607 1401 234
3156 iOS4.1 4.1 133 1610 1413 234
3157 iOS3.2 3.2.2 133 1614 1428 236
3158 iOS3.1 3.1.3 133 1617 1436 236
3159 iOS2.2 2.2.1 133 1628 1432 232
3160 iOS2.1 2.1.1 133 1632 1433 236
3161 iOS2.0 2.0.2 134 1632 1432 236
3162 iOS16.2 16.2 19 209 270 55
3163 iOS 27 138 1666 1480 246
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
3131 -
7.8
HIGH The IOAcceleratorFamily API implementation in Apple iOS before 8 and Apple TV before 7 allows attackers to cause a denial of service (NULL pointer dereference and device crash) via an application tha… NVD-CWE-Other
CVE-2014-4369 cpe:2.3:o:apple:iphone_os:7.1:*
cpe:2.3:o:apple:iphone_os:7.1.1:*
cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:ap…
7.1.2 2024-11-21 11:10
2014-09-18
Show GitHub Exploit DB Packet Storm
3132 -
6.9
MEDIUM The Accessibility subsystem in Apple iOS before 8 allows attackers to interfere with screen locking via vectors related to AssistiveTouch events. CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-4368 cpe:2.3:o:apple:iphone_os:7.1:*
cpe:2.3:o:apple:iphone_os:7.1.1:*
cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:ap…
7.1.2 2024-11-21 11:10
2014-09-18
Show GitHub Exploit DB Packet Storm
3133 -
2.1
LOW Apple iOS before 8 enables Voice Dial during all upgrade actions, which makes it easier for physically proximate attackers to launch unintended calls by speaking a telephone number. CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-4367 cpe:2.3:o:apple:iphone_os:7.1:*
cpe:2.3:o:apple:iphone_os:7.1.1:*
cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:ap…
7.1.2 2024-11-21 11:10
2014-09-18
Show GitHub Exploit DB Packet Storm
3134 -
5.0
MEDIUM Mail in Apple iOS before 8 does not prevent sending a LOGIN command to a LOGINDISABLED IMAP server, which allows remote attackers to obtain sensitive cleartext information by sniffing the network. CWE-255
Credentials Management
CVE-2014-4366 cpe:2.3:o:apple:iphone_os:7.1:*
cpe:2.3:o:apple:iphone_os:7.1.1:*
cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:ap…
7.1.2 2024-11-21 11:10
2014-09-18
Show GitHub Exploit DB Packet Storm
3135 5.6
2.9
MEDIUM
Adjacent
The 802.1X subsystem in Apple iOS before 8 and Apple TV before 7 does not require strong authentication methods, which allows remote attackers to calculate credentials by offering LEAP authentication… CWE-310
Cryptographic Issues
CVE-2014-4364 cpe:2.3:o:apple:iphone_os:7.1:*
cpe:2.3:o:apple:iphone_os:7.1.1:*
cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:ap…
7.1.2 2024-11-21 11:10
2014-09-18
Show GitHub Exploit DB Packet Storm
3136 -
5.0
MEDIUM Safari in Apple iOS before 8 does not properly restrict the autofilling of passwords in forms, which allows remote attackers to obtain sensitive information via (1) an http web site, (2) an https web… CWE-255
Credentials Management
CVE-2014-4363 cpe:2.3:o:apple:iphone_os:*:* 7.0 7.1.2 2024-11-21 11:10
2014-09-18
Show GitHub Exploit DB Packet Storm
3137 -
5.0
MEDIUM The Sandbox Profiles implementation in Apple iOS before 8 does not properly restrict the third-party app sandbox profile, which allows attackers to obtain sensitive Apple ID information via a crafted… CWE-200
Information Exposure
CVE-2014-4362 cpe:2.3:o:apple:iphone_os:7.1:*
cpe:2.3:o:apple:iphone_os:7.1.1:*
cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:ap…
7.1.2 2024-11-21 11:10
2014-09-18
Show GitHub Exploit DB Packet Storm
3138 -
5.0
MEDIUM The Home & Lock Screen subsystem in Apple iOS before 8 does not properly restrict the private API for app prominence, which allows attackers to determine the frontmost app by leveraging access to a c… CWE-200
Information Exposure
CVE-2014-4361 cpe:2.3:o:apple:iphone_os:7.1:*
cpe:2.3:o:apple:iphone_os:7.1.1:*
cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:ap…
7.1.2 2024-11-21 11:10
2014-09-18
Show GitHub Exploit DB Packet Storm
3139 -
2.1
LOW Accounts Framework in Apple iOS before 8 and Apple TV before 7 allows attackers to obtain sensitive information by reading log data that was not intended to be present in a log. CWE-200
Information Exposure
CVE-2014-4357 cpe:2.3:o:apple:iphone_os:7.1:*
cpe:2.3:o:apple:iphone_os:7.1.1:*
cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:ap…
7.1.2 2024-11-21 11:10
2014-09-18
Show GitHub Exploit DB Packet Storm
3140 -
2.1
LOW Apple iOS before 8 does not follow the intended configuration setting for text-message preview on the lock screen, which allows physically proximate attackers to obtain sensitive information by readi… CWE-200
Information Exposure
CVE-2014-4356 cpe:2.3:o:apple:iphone_os:7.1:*
cpe:2.3:o:apple:iphone_os:7.1.1:*
cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:ap…
7.1.2 2024-11-21 11:10
2014-09-18
Show GitHub Exploit DB Packet Storm