Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
iOS Number Of NVD 3626 CRITICAL 138 HIGH 1666 MEDIUM 1480 LOW 246
URL https://www.apple.com/jp/ios/
Explanation This is the operating system installed on the iPhone provided by Apple.
Tag
  • Mobile
  • Apple

Add Information URL
No Type Name URL
1 https://support.apple.com/en-us/HT201222
2 https://developer.apple.com/documentation/ios-ipados-release-notes
3 https://en.wikipedia.org/wiki/IOS_version_history

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
3211 iOS 26 26.5.1 June 1, 2026 Sept. 15, 2025 1 40 38 1
3212 iOS 18 18.7.9 May 11, 2026 Sept. 16, 2024 8 64 89 8
3213 iOS 17 17.6.1 Aug. 27, 2024 Sept. 18, 2023 9 114 178 22
3214 iOS 16 16.4.1 April 7, 2023 Sept. 12, 2022 25 244 303 56
3215 iOS 15 15.7 Sept. 12, 2022 Sept. 20, 2021 39 395 388 72
3216 iOS 14 14.8 Sept. 13, 2021 July 9, 2020 53 566 495 79
3217 iOS 13 13.7 Sept. 1, 2020 Sept. 19, 2019 65 746 579 96
3218 iOS 12 12.5.1 Jan. 11, 2021 Sept. 17, 2018 84 903 659 108
3219 iOS 11 11.4.1 July 9, 2018 Sept. 19, 2017 94 1068 728 116
3220 iOS 10 10.3.4 July 22, 2019 Sept. 13, 2016 120 1289 828 133
3221 iOS 9 9.3.6 July 22, 2019 Sept. 16, 2015 134 1415 955 149
3222 iOS 8 8.4.1 Aug. 13, 2015 Sept. 17, 2014 132 1470 1168 181
3223 iOS 7 7.0.6 Feb. 21, 2014 Sept. 18, 2013 132 1491 1231 204
3224 iOS 6 6.0.2 Dec. 18, 2012 Sept. 19, 2012 132 1517 1294 216
3225 iOS 5 5.0.1 Nov. 10, 2011 Oct. 12, 2011 132 1586 1368 228
3226 iOS 4 4.0.2 Aug. 11, 2010 June 21, 2010 133 1613 1423 235
3227 iPhone OS 3 3.0.1 July 31, 2009 June 17, 2009 133 1620 1438 238
3228 iPhone OS 2 1.1.5 July 15, 2008 July 11, 2008 134 1632 1433 236
3229 iPhone OS 1 1.0.2 Aug. 21, 2007 June 29, 2007 133 1637 1434 237
3230 iOS7.1 7.1.2 132 1484 1207 198
3231 iOS6.1 6.1.6 132 1508 1275 212
3232 iOS6.0 6.0.2 132 1517 1293 216
3233 iOS5.1 5.1.1 132 1527 1346 226
3234 iOS4.3 4.3.5 132 1605 1396 234
3235 iOS4.2 4.2.9 132 1607 1401 234
3236 iOS4.1 4.1 133 1610 1413 234
3237 iOS3.2 3.2.2 133 1614 1428 236
3238 iOS3.1 3.1.3 133 1617 1436 236
3239 iOS2.2 2.2.1 133 1628 1432 232
3240 iOS2.1 2.1.1 133 1632 1433 236
3241 iOS2.0 2.0.2 134 1632 1432 236
3242 iOS16.2 16.2 19 209 270 55
3243 iOS 27 138 1666 1480 246
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
3211 -
5.0
MEDIUM The Twitter subsystem in Apple iOS before 7 does not require API conformity for access to Twitter daemon interfaces, which allows attackers to post Tweets via a crafted app that sends direct requests… CWE-264
Permissions, Privileges, and Access Controls
CVE-2013-5157 cpe:2.3:o:apple:iphone_os:6.1:*
cpe:2.3:o:apple:iphone_os:6.1.3:*
cpe:2.3:o:apple:iphone_os:6.1.2:*
cpe:2.3:o:…
6.1.4 2024-11-21 10:57
2013-09-19
Show GitHub Exploit DB Packet Storm
3212 -
4.3
MEDIUM The Telephony subsystem in Apple iOS before 7 does not require API conformity for access to telephony-daemon interfaces, which allows attackers to bypass intended restrictions on phone calls via a cr… CWE-264
Permissions, Privileges, and Access Controls
CVE-2013-5156 cpe:2.3:o:apple:iphone_os:6.1:*
cpe:2.3:o:apple:iphone_os:6.1.3:*
cpe:2.3:o:apple:iphone_os:6.1.2:*
cpe:2.3:o:…
6.1.4 2024-11-21 10:57
2013-09-19
Show GitHub Exploit DB Packet Storm
3213 -
7.1
HIGH The Sandbox subsystem in Apple iOS before 7 allows attackers to cause a denial of service (infinite loop) via an application that writes crafted values to /dev/random. CWE-20
 Improper Input Validation 
CVE-2013-5155 cpe:2.3:o:apple:iphone_os:6.1:*
cpe:2.3:o:apple:iphone_os:6.1.3:*
cpe:2.3:o:apple:iphone_os:6.1.2:*
cpe:2.3:o:…
6.1.4 2024-11-21 10:57
2013-09-19
Show GitHub Exploit DB Packet Storm
3214 -
4.3
MEDIUM The Sandbox subsystem in Apple iOS before 7 determines the sandboxing requirement for a #! application on the basis of the script interpreter instead of the script, which allows attackers to bypass i… CWE-264
Permissions, Privileges, and Access Controls
CVE-2013-5154 cpe:2.3:o:apple:iphone_os:6.1:*
cpe:2.3:o:apple:iphone_os:6.1.3:*
cpe:2.3:o:apple:iphone_os:6.1.2:*
cpe:2.3:o:…
6.1.4 2024-11-21 10:57
2013-09-19
Show GitHub Exploit DB Packet Storm
3215 -
2.1
LOW Springboard in Apple iOS before 7 does not properly manage the lock state in Lost Mode, which allows physically proximate attackers to read notifications via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls
CVE-2013-5153 cpe:2.3:o:apple:iphone_os:6.1:*
cpe:2.3:o:apple:iphone_os:6.1.3:*
cpe:2.3:o:apple:iphone_os:6.1.2:*
cpe:2.3:o:…
6.1.4 2024-11-21 10:57
2013-09-19
Show GitHub Exploit DB Packet Storm
3216 -
4.3
MEDIUM Mobile Safari in Apple iOS before 7 allows remote attackers to spoof the URL bar via a crafted web site. CWE-20
 Improper Input Validation 
CVE-2013-5152 cpe:2.3:o:apple:iphone_os:6.1:*
cpe:2.3:o:apple:iphone_os:6.1.3:*
cpe:2.3:o:apple:iphone_os:6.1.2:*
cpe:2.3:o:…
6.1.4 2024-11-21 10:57
2013-09-19
Show GitHub Exploit DB Packet Storm
3217 -
4.3
MEDIUM Mobile Safari in Apple iOS before 7 does not prevent HTML interpretation of a document served with a text/plain content type, which allows remote attackers to conduct cross-site scripting (XSS) attac… CWE-79
Cross-site Scripting
CVE-2013-5151 cpe:2.3:o:apple:iphone_os:6.1:*
cpe:2.3:o:apple:iphone_os:6.1.3:*
cpe:2.3:o:apple:iphone_os:6.1.2:*
cpe:2.3:o:…
6.1.4 2024-11-21 10:57
2013-09-19
Show GitHub Exploit DB Packet Storm
3218 -
1.9
LOW The history-clearing feature in Safari in Apple iOS before 7 does not clear the back/forward history of an open tab, which allows physically proximate attackers to obtain sensitive information by lev… CWE-200
Information Exposure
CVE-2013-5150 cpe:2.3:o:apple:iphone_os:6.1:*
cpe:2.3:o:apple:iphone_os:6.1.3:*
cpe:2.3:o:apple:iphone_os:6.1.2:*
cpe:2.3:o:…
6.1.4 2024-11-21 10:57
2013-09-19
Show GitHub Exploit DB Packet Storm
3219 -
4.3
MEDIUM The Push Notifications subsystem in Apple iOS before 7 provides the push-notification token to an app without user approval, which allows attackers to obtain sensitive information via an app that emp… CWE-264
Permissions, Privileges, and Access Controls
CVE-2013-5149 cpe:2.3:o:apple:iphone_os:6.1:*
cpe:2.3:o:apple:iphone_os:6.1.3:*
cpe:2.3:o:apple:iphone_os:6.1.2:*
cpe:2.3:o:…
6.1.4 2024-11-21 10:57
2013-09-19
Show GitHub Exploit DB Packet Storm
3220 -
3.7
LOW Passcode Lock in Apple iOS before 7 does not properly manage the lock state, which allows physically proximate attackers to bypass an intended passcode requirement by leveraging a race condition invo… CWE-362
Race Condition
CVE-2013-5147 cpe:2.3:o:apple:iphone_os:6.1:*
cpe:2.3:o:apple:iphone_os:6.1.3:*
cpe:2.3:o:apple:iphone_os:6.1.2:*
cpe:2.3:o:…
6.1.4 2024-11-21 10:57
2013-09-19
Show GitHub Exploit DB Packet Storm