| iOS | Number Of NVD | 3626 | CRITICAL | 138 | HIGH | 1666 | MEDIUM | 1480 | LOW | 246 |
| URL | https://www.apple.com/jp/ios/ | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| Explanation | This is the operating system installed on the iPhone provided by Apple. | ||||||||
| Tag | |||||||||
| No | Type | Name | URL |
|---|---|---|---|
| 1 | https://support.apple.com/en-us/HT201222 | ||
| 2 | https://developer.apple.com/documentation/ios-ipados-release-notes | ||
| 3 | https://en.wikipedia.org/wiki/IOS_version_history |
| No | Name | Latest Version | Release date | Initial release | Normal Support | Security Support Service Pack Support |
Extended for a fee |
Critical | High | Medium | Low |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 3221 | iOS 26 | 26.5.1 | June 1, 2026 | Sept. 15, 2025 | 1 | 40 | 38 | 1 | |||
| 3222 | iOS 18 | 18.7.9 | May 11, 2026 | Sept. 16, 2024 | 8 | 64 | 89 | 8 | |||
| 3223 | iOS 17 | 17.6.1 | Aug. 27, 2024 | Sept. 18, 2023 | 9 | 114 | 178 | 22 | |||
| 3224 | iOS 16 | 16.4.1 | April 7, 2023 | Sept. 12, 2022 | 25 | 244 | 303 | 56 | |||
| 3225 | iOS 15 | 15.7 | Sept. 12, 2022 | Sept. 20, 2021 | 39 | 395 | 388 | 72 | |||
| 3226 | iOS 14 | 14.8 | Sept. 13, 2021 | July 9, 2020 | 53 | 566 | 495 | 79 | |||
| 3227 | iOS 13 | 13.7 | Sept. 1, 2020 | Sept. 19, 2019 | 65 | 746 | 579 | 96 | |||
| 3228 | iOS 12 | 12.5.1 | Jan. 11, 2021 | Sept. 17, 2018 | 84 | 903 | 659 | 108 | |||
| 3229 | iOS 11 | 11.4.1 | July 9, 2018 | Sept. 19, 2017 | 94 | 1068 | 728 | 116 | |||
| 3230 | iOS 10 | 10.3.4 | July 22, 2019 | Sept. 13, 2016 | 120 | 1289 | 828 | 133 | |||
| 3231 | iOS 9 | 9.3.6 | July 22, 2019 | Sept. 16, 2015 | 134 | 1415 | 955 | 149 | |||
| 3232 | iOS 8 | 8.4.1 | Aug. 13, 2015 | Sept. 17, 2014 | 132 | 1470 | 1168 | 181 | |||
| 3233 | iOS 7 | 7.0.6 | Feb. 21, 2014 | Sept. 18, 2013 | 132 | 1491 | 1231 | 204 | |||
| 3234 | iOS 6 | 6.0.2 | Dec. 18, 2012 | Sept. 19, 2012 | 132 | 1517 | 1294 | 216 | |||
| 3235 | iOS 5 | 5.0.1 | Nov. 10, 2011 | Oct. 12, 2011 | 132 | 1586 | 1368 | 228 | |||
| 3236 | iOS 4 | 4.0.2 | Aug. 11, 2010 | June 21, 2010 | 133 | 1613 | 1423 | 235 | |||
| 3237 | iPhone OS 3 | 3.0.1 | July 31, 2009 | June 17, 2009 | 133 | 1620 | 1438 | 238 | |||
| 3238 | iPhone OS 2 | 1.1.5 | July 15, 2008 | July 11, 2008 | 134 | 1632 | 1433 | 236 | |||
| 3239 | iPhone OS 1 | 1.0.2 | Aug. 21, 2007 | June 29, 2007 | 133 | 1637 | 1434 | 237 | |||
| 3240 | iOS7.1 | 7.1.2 | 132 | 1484 | 1207 | 198 | |||||
| 3241 | iOS6.1 | 6.1.6 | 132 | 1508 | 1275 | 212 | |||||
| 3242 | iOS6.0 | 6.0.2 | 132 | 1517 | 1293 | 216 | |||||
| 3243 | iOS5.1 | 5.1.1 | 132 | 1527 | 1346 | 226 | |||||
| 3244 | iOS4.3 | 4.3.5 | 132 | 1605 | 1396 | 234 | |||||
| 3245 | iOS4.2 | 4.2.9 | 132 | 1607 | 1401 | 234 | |||||
| 3246 | iOS4.1 | 4.1 | 133 | 1610 | 1413 | 234 | |||||
| 3247 | iOS3.2 | 3.2.2 | 133 | 1614 | 1428 | 236 | |||||
| 3248 | iOS3.1 | 3.1.3 | 133 | 1617 | 1436 | 236 | |||||
| 3249 | iOS2.2 | 2.2.1 | 133 | 1628 | 1432 | 232 | |||||
| 3250 | iOS2.1 | 2.1.1 | 133 | 1632 | 1433 | 236 | |||||
| 3251 | iOS2.0 | 2.0.2 | 134 | 1632 | 1432 | 236 | |||||
| 3252 | iOS16.2 | 16.2 | 19 | 209 | 270 | 55 | |||||
| 3253 | iOS 27 | 138 | 1666 | 1480 | 246 |
| No | CVSS3 CVSS2 |
Level Attach Vector |
Title | CWE | CVE | cpe23Uri | or higher | or less | more than | less than | Update date Published date |
Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 3221 |
- 6.3 |
MEDIUM | kextd in Kext Management in Apple iOS before 7 does not properly verify authorization for IPC messages, which allows local users to (1) load or (2) unload kernel extensions via a crafted message. |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2013-5145 |
cpe:2.3:o:apple:iphone_os:6.1:* cpe:2.3:o:apple:iphone_os:6.1.3:* cpe:2.3:o:apple:iphone_os:6.1.2:* cpe:2.3:o:… |
6.1.4 |
2024-11-21 10:57 2013-09-19 |
Show | GitHub Exploit DB Packet Storm | |||
| 3222 |
- 4.9 |
MEDIUM | The kernel in Apple iOS before 7 does not initialize unspecified kernel data structures, which allows local users to obtain sensitive information from kernel stack memory via the (1) msgctl API or (2… |
CWE-200
Information Exposure |
CVE-2013-5142 |
cpe:2.3:o:apple:iphone_os:6.1:* cpe:2.3:o:apple:iphone_os:6.1.3:* cpe:2.3:o:apple:iphone_os:6.1.2:* cpe:2.3:o:… |
6.1.4 |
2024-11-21 10:57 2013-09-19 |
Show | GitHub Exploit DB Packet Storm | |||
| 3223 |
- 7.1 |
HIGH | The kernel in Apple iOS before 7 uses an incorrect data size for a certain integer variable, which allows attackers to cause a denial of service (infinite loop and device hang) via a crafted applicat… |
CWE-189
Numeric Errors |
CVE-2013-5141 |
cpe:2.3:o:apple:iphone_os:6.1:* cpe:2.3:o:apple:iphone_os:6.1.3:* cpe:2.3:o:apple:iphone_os:6.1.2:* cpe:2.3:o:… |
6.1.4 |
2024-11-21 10:57 2013-09-19 |
Show | GitHub Exploit DB Packet Storm | |||
| 3224 |
- 7.8 |
HIGH | The kernel in Apple iOS before 7 allows remote attackers to cause a denial of service (assertion failure and device restart) via an invalid packet fragment. |
CWE-20
Improper Input Validation |
CVE-2013-5140 |
cpe:2.3:o:apple:iphone_os:6.1:* cpe:2.3:o:apple:iphone_os:6.1.3:* cpe:2.3:o:apple:iphone_os:6.1.2:* cpe:2.3:o:… |
6.1.4 |
2024-11-21 10:57 2013-09-19 |
Show | GitHub Exploit DB Packet Storm | |||
| 3225 |
- 9.3 |
HIGH | The IOSerialFamily driver in Apple iOS before 7 allows attackers to execute arbitrary code or cause a denial of service (out-of-bounds array access) via a crafted application. |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2013-5139 |
cpe:2.3:o:apple:iphone_os:6.1:* cpe:2.3:o:apple:iphone_os:6.1.3:* cpe:2.3:o:apple:iphone_os:6.1.2:* cpe:2.3:o:… |
6.1.4 |
2024-11-21 10:57 2013-09-19 |
Show | GitHub Exploit DB Packet Storm | |||
| 3226 |
- 4.7 |
MEDIUM | IOCatalogue in IOKitUser in Apple iOS before 7 allows attackers to cause a denial of service (NULL pointer dereference and device crash) via a crafted application. |
NVD-CWE-Other
|
CVE-2013-5138 |
cpe:2.3:o:apple:iphone_os:6.1:* cpe:2.3:o:apple:iphone_os:6.1.3:* cpe:2.3:o:apple:iphone_os:6.1.2:* cpe:2.3:o:… |
6.1.4 |
2024-11-21 10:57 2013-09-19 |
Show | GitHub Exploit DB Packet Storm | |||
| 3227 |
- 2.6 |
LOW | IOKit in Apple iOS before 7 allows attackers to send user-interface events to the foreground app by leveraging control over a background app and using the (1) task-completion API or (2) VoIP API. |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2013-5137 |
cpe:2.3:o:apple:iphone_os:6.1:* cpe:2.3:o:apple:iphone_os:6.1.3:* cpe:2.3:o:apple:iphone_os:6.1.2:* cpe:2.3:o:… |
6.1.4 |
2024-11-21 10:57 2013-09-19 |
Show | GitHub Exploit DB Packet Storm | |||
| 3228 |
- 4.3 |
MEDIUM | Cross-site scripting (XSS) vulnerability in WebKit in Apple iOS before 7 allows remote attackers to inject arbitrary web script or HTML via a crafted URL. |
CWE-79
Cross-site Scripting |
CVE-2013-5131 |
cpe:2.3:o:apple:iphone_os:6.1:* cpe:2.3:o:apple:iphone_os:6.1.3:* cpe:2.3:o:apple:iphone_os:6.1.2:* cpe:2.3:o:… |
6.1.4 |
2024-11-21 10:57 2013-09-19 |
Show | GitHub Exploit DB Packet Storm | |||
| 3229 |
- 4.3 |
MEDIUM | Multiple cross-site scripting (XSS) vulnerabilities in WebKit in Apple iOS before 7 allow user-assisted remote attackers to inject arbitrary web script or HTML via vectors involving a (1) drag-and-dr… |
CWE-79
Cross-site Scripting |
CVE-2013-5129 |
cpe:2.3:o:apple:iphone_os:6.1:* cpe:2.3:o:apple:iphone_os:6.1.3:* cpe:2.3:o:apple:iphone_os:6.1.2:* cpe:2.3:o:… |
6.1.4 |
2024-11-21 10:57 2013-09-19 |
Show | GitHub Exploit DB Packet Storm | |||
| 3230 |
- 6.8 |
MEDIUM | WebKit, as used in Apple iOS before 7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vul… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2013-5128 |
cpe:2.3:o:apple:iphone_os:6.1:* cpe:2.3:o:apple:iphone_os:6.1.3:* cpe:2.3:o:apple:iphone_os:6.1.2:* cpe:2.3:o:… |
6.1.4 |
2024-11-21 10:57 2013-09-19 |
Show | GitHub Exploit DB Packet Storm |