Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
iOS Number Of NVD 3626 CRITICAL 138 HIGH 1666 MEDIUM 1480 LOW 246
URL https://www.apple.com/jp/ios/
Explanation This is the operating system installed on the iPhone provided by Apple.
Tag
  • Mobile
  • Apple

Add Information URL
No Type Name URL
1 https://support.apple.com/en-us/HT201222
2 https://developer.apple.com/documentation/ios-ipados-release-notes
3 https://en.wikipedia.org/wiki/IOS_version_history

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
3161 iOS 26 26.5.1 June 1, 2026 Sept. 15, 2025 1 40 38 1
3162 iOS 18 18.7.9 May 11, 2026 Sept. 16, 2024 8 64 89 8
3163 iOS 17 17.6.1 Aug. 27, 2024 Sept. 18, 2023 9 114 178 22
3164 iOS 16 16.4.1 April 7, 2023 Sept. 12, 2022 25 244 303 56
3165 iOS 15 15.7 Sept. 12, 2022 Sept. 20, 2021 39 395 388 72
3166 iOS 14 14.8 Sept. 13, 2021 July 9, 2020 53 566 495 79
3167 iOS 13 13.7 Sept. 1, 2020 Sept. 19, 2019 65 746 579 96
3168 iOS 12 12.5.1 Jan. 11, 2021 Sept. 17, 2018 84 903 659 108
3169 iOS 11 11.4.1 July 9, 2018 Sept. 19, 2017 94 1068 728 116
3170 iOS 10 10.3.4 July 22, 2019 Sept. 13, 2016 120 1289 828 133
3171 iOS 9 9.3.6 July 22, 2019 Sept. 16, 2015 134 1415 955 149
3172 iOS 8 8.4.1 Aug. 13, 2015 Sept. 17, 2014 132 1470 1168 181
3173 iOS 7 7.0.6 Feb. 21, 2014 Sept. 18, 2013 132 1491 1231 204
3174 iOS 6 6.0.2 Dec. 18, 2012 Sept. 19, 2012 132 1517 1294 216
3175 iOS 5 5.0.1 Nov. 10, 2011 Oct. 12, 2011 132 1586 1368 228
3176 iOS 4 4.0.2 Aug. 11, 2010 June 21, 2010 133 1613 1423 235
3177 iPhone OS 3 3.0.1 July 31, 2009 June 17, 2009 133 1620 1438 238
3178 iPhone OS 2 1.1.5 July 15, 2008 July 11, 2008 134 1632 1433 236
3179 iPhone OS 1 1.0.2 Aug. 21, 2007 June 29, 2007 133 1637 1434 237
3180 iOS7.1 7.1.2 132 1484 1207 198
3181 iOS6.1 6.1.6 132 1508 1275 212
3182 iOS6.0 6.0.2 132 1517 1293 216
3183 iOS5.1 5.1.1 132 1527 1346 226
3184 iOS4.3 4.3.5 132 1605 1396 234
3185 iOS4.2 4.2.9 132 1607 1401 234
3186 iOS4.1 4.1 133 1610 1413 234
3187 iOS3.2 3.2.2 133 1614 1428 236
3188 iOS3.1 3.1.3 133 1617 1436 236
3189 iOS2.2 2.2.1 133 1628 1432 232
3190 iOS2.1 2.1.1 133 1632 1433 236
3191 iOS2.0 2.0.2 134 1632 1432 236
3192 iOS16.2 16.2 19 209 270 55
3193 iOS 27 138 1666 1480 246
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
3161 -
1.9
LOW Lock Screen in Apple iOS before 7.1.2 does not properly enforce the limit on failed passcode attempts, which makes it easier for physically proximate attackers to conduct brute-force passcode-guessin… CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-1352 cpe:2.3:o:apple:iphone_os:7.1:*
cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:apple:iphone_os:7.0.6:*
cpe:2.3:o:ap…
7.1.1 2024-11-21 11:04
2014-07-1
Show GitHub Exploit DB Packet Storm
3162 -
3.6
LOW Siri in Apple iOS before 7.1.2 allows physically proximate attackers to bypass an intended lock-screen passcode requirement, and read a contact list, via a Siri request that refers to a contact ambig… CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-1351 cpe:2.3:o:apple:iphone_os:7.1:*
cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:apple:iphone_os:7.0.6:*
cpe:2.3:o:ap…
7.1.1 2024-11-21 11:04
2014-07-1
Show GitHub Exploit DB Packet Storm
3163 -
4.6
MEDIUM Settings in Apple iOS before 7.1.2 allows physically proximate attackers to bypass an intended iCloud password requirement, and turn off the Find My iPhone service, by leveraging incorrect state mana… CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-1350 cpe:2.3:o:apple:iphone_os:7.1:*
cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:apple:iphone_os:7.0.6:*
cpe:2.3:o:ap…
7.1.1 2024-11-21 11:04
2014-07-1
Show GitHub Exploit DB Packet Storm
3164 -
6.8
MEDIUM Use-after-free vulnerability in Safari in Apple iOS before 7.1.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an invalid URL. NVD-CWE-Other
CVE-2014-1349 cpe:2.3:o:apple:iphone_os:7.1:*
cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:apple:iphone_os:7.0.6:*
cpe:2.3:o:ap…
7.1.1 2024-11-21 11:04
2014-07-1
Show GitHub Exploit DB Packet Storm
3165 -
2.1
LOW Mail in Apple iOS before 7.1.2 advertises the availability of data protection for attachments but stores cleartext attachments under mobile/Library/Mail/, which makes it easier for physically proxima… CWE-310
Cryptographic Issues
CVE-2014-1348 cpe:2.3:o:apple:iphone_os:7.1:*
cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:apple:iphone_os:7.0.6:*
cpe:2.3:o:ap…
7.1.1 2024-11-21 11:04
2014-07-1
Show GitHub Exploit DB Packet Storm
3166 -
4.3
MEDIUM WebKit in Apple iOS before 7.1.2 and Apple Safari before 6.1.5 and 7.x before 7.0.5 does not properly encode domain names in URLs, which allows remote attackers to spoof the address bar via a crafted… NVD-CWE-Other
CVE-2014-1345 cpe:2.3:o:apple:iphone_os:7.1:*
cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:apple:iphone_os:7.0.6:*
cpe:2.3:o:ap…
7.1.1 2024-11-21 11:04
2014-07-1
Show GitHub Exploit DB Packet Storm
3167 -
6.8
MEDIUM WebKit, as used in Apple iOS before 7.1.2, Apple Safari before 6.1.5 and 7.x before 7.0.5, and Apple TV before 6.1.2, allows remote attackers to execute arbitrary code or cause a denial of service (m… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2014-1325 cpe:2.3:o:apple:iphone_os:7.1:*
cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:apple:iphone_os:7.0.6:*
cpe:2.3:o:ap…
7.1.1 2024-11-21 11:04
2014-07-1
Show GitHub Exploit DB Packet Storm
3168 -
4.9
MEDIUM IOKit in Apple iOS before 7.1.1, Apple OS X through 10.9.2, and Apple TV before 6.1.1 places kernel pointers into an object data structure, which makes it easier for local users to bypass the ASLR pr… CWE-200
Information Exposure
CVE-2014-1320 cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:apple:iphone_os:7.0.6:*
cpe:2.3:o:apple:iphone_os:7.0.5:*
cpe:2.3:o:…
7.1 2024-11-21 11:04
2014-04-23
Show GitHub Exploit DB Packet Storm
3169 -
4.3
MEDIUM CFNetwork in Apple iOS before 7.1.1, Apple OS X through 10.9.2, and Apple TV before 6.1.1 does not ensure that a Set-Cookie HTTP header is complete before interpreting the header's value, which allow… CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-1296 cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:apple:iphone_os:7.0.6:*
cpe:2.3:o:apple:iphone_os:7.0.5:*
cpe:2.3:o:…
7.1 2024-11-21 11:04
2014-04-23
Show GitHub Exploit DB Packet Storm
3170 -
6.8
MEDIUM Secure Transport in Apple iOS before 7.1.1, Apple OS X 10.8.x and 10.9.x through 10.9.2, and Apple TV before 6.1.1 does not ensure that a server's X.509 certificate is the same during renegotiation a… CWE-287
Improper Authentication
CVE-2014-1295 cpe:2.3:o:apple:iphone_os:7.0:*
cpe:2.3:o:apple:iphone_os:7.0.6:*
cpe:2.3:o:apple:iphone_os:7.0.5:*
cpe:2.3:o:…
7.1 2024-11-21 11:04
2014-04-23
Show GitHub Exploit DB Packet Storm