Apple iOS vulnerabilities
1,765 known vulnerabilities affecting apple/ios.
Total CVEs
1,765
CISA KEV
27
actively exploited
Public exploits
227
Exploited in wild
30
Severity breakdown
CRITICAL119HIGH907MEDIUM638LOW94UNKNOWN7
Vulnerabilities
Page 31 of 89
CVE-2018-4341HIGHCVSS 8.6v122018-09-17
CVE-2018-4341 [HIGH] CVE-2018-4341: iOS 12
Apple Security Update: About the security content of iOS 12
Product: iOS
Version: 12
CVE: CVE-2018-4341
Component: IOKit
Impact: A malicious application may be able to break out of its sandbox
Description: A memory corruption issue was addressed with improved memory handling.
apple
CVE-2018-4361HIGHCVSS 8.8v122018-09-17
CVE-2018-4361 [HIGH] CVE-2018-4361: iOS 12
Apple Security Update: About the security content of iOS 12
Product: iOS
Version: 12
CVE: CVE-2018-4361
Component: WebKit
Impact: Unexpected interaction causes an ASSERT failure
Description: A memory consumption issue was addressed with improved memory handling.
apple
CVE-2018-4408HIGHCVSS 7.8v122018-09-17
CVE-2018-4408 [HIGH] CVE-2018-4408: iOS 12
Apple Security Update: About the security content of iOS 12
Product: iOS
Version: 12
CVE: CVE-2018-4408
Component: IOHIDFamily
Impact: A malicious application may be able to execute arbitrary code with kernel privileges
Description: A memory corruption issue was addressed with improved input validation.
apple
CVE-2018-4312HIGHCVSS 8.8PoCv122018-09-17
CVE-2018-4312 [HIGH] CVE-2018-4312: iOS 12
Apple Security Update: About the security content of iOS 12
Product: iOS
Version: 12
CVE: CVE-2018-4312
Component: WebKit
Impact: Processing maliciously crafted web content may lead to arbitrary code execution
Description: A use after free issue was addressed with improved memory management.
apple
CVE-2016-1777HIGHCVSS 7.5v122018-09-17
CVE-2016-1777 [HIGH] CVE-2016-1777: iOS 12
Apple Security Update: About the security content of iOS 12
Product: iOS
Version: 12
CVE: CVE-2016-1777
Component: Security
Impact: An attacker may be able to exploit weaknesses in the RC4 cryptographic algorithm
Description: This issue was addressed by removing RC4.
apple
CVE-2018-4319HIGHCVSS 8.1v122018-09-17
CVE-2018-4319 [HIGH] CVE-2018-4319: iOS 12
Apple Security Update: About the security content of iOS 12
Product: iOS
Version: 12
CVE: CVE-2018-4319
Component: WebKit
Impact: A malicious website may cause unexepected cross-origin behavior
Description: A cross-origin issue existed with iframe elements. This was addressed with improved tracking of security origins.
apple
CVE-2018-4314HIGHCVSS 8.8PoCv122018-09-17
CVE-2018-4314 [HIGH] CVE-2018-4314: iOS 12
Apple Security Update: About the security content of iOS 12
Product: iOS
Version: 12
CVE: CVE-2018-4314
Component: WebKit
Impact: Processing maliciously crafted web content may lead to arbitrary code execution
Description: A use after free issue was addressed with improved memory management.
apple
CVE-2018-4316HIGHCVSS 8.8v122018-09-17
CVE-2018-4316 [HIGH] CVE-2018-4316: iOS 12
Apple Security Update: About the security content of iOS 12
Product: iOS
Version: 12
CVE: CVE-2018-4316
Component: WebKit
Impact: Processing maliciously crafted web content may lead to arbitrary code execution
Description: A memory corruption issue was addressed with improved state management.
apple
CVE-2018-4426HIGHCVSS 7.8v122018-09-17
CVE-2018-4426 [HIGH] CVE-2018-4426: iOS 12
Apple Security Update: About the security content of iOS 12
Product: iOS
Version: 12
CVE: CVE-2018-4426
Component: Grand Central Dispatch
Impact: An application may be able to execute arbitrary code with system privileges
Description: A memory corruption issue was addressed with improved memory handling.
apple
CVE-2018-4203HIGHCVSS 7.5v122018-09-17
CVE-2018-4203 [HIGH] CVE-2018-4203: iOS 12
Apple Security Update: About the security content of iOS 12
Product: iOS
Version: 12
CVE: CVE-2018-4203
Component: Symptom Framework
Impact: An application may be able to read restricted memory
Description: An out-of-bounds read was addressed with improved bounds checking.
apple
CVE-2018-4317HIGHCVSS 8.8PoCv122018-09-17
CVE-2018-4317 [HIGH] CVE-2018-4317: iOS 12
Apple Security Update: About the security content of iOS 12
Product: iOS
Version: 12
CVE: CVE-2018-4317
Component: WebKit
Impact: Processing maliciously crafted web content may lead to arbitrary code execution
Description: A use after free issue was addressed with improved memory management.
apple
CVE-2018-4412HIGHCVSS 7.8v122018-09-17
CVE-2018-4412 [HIGH] CVE-2018-4412: iOS 12
Apple Security Update: About the security content of iOS 12
Product: iOS
Version: 12
CVE: CVE-2018-4412
Component: CoreFoundation
Impact: A malicious application may be able to elevate privileges
Description: A memory corruption issue was addressed with improved input validation.
apple
CVE-2018-4407HIGHCVSS 8.8v122018-09-17
CVE-2018-4407 [HIGH] CVE-2018-4407: iOS 12
Apple Security Update: About the security content of iOS 12
Product: iOS
Version: 12
CVE: CVE-2018-4407
Component: Kernel
Impact: An attacker in a privileged network position may be able to execute arbitrary code
Description: A memory corruption issue was addressed with improved validation.
apple
CVE-2018-4197HIGHCVSS 8.8PoCv122018-09-17
CVE-2018-4197 [HIGH] CVE-2018-4197: iOS 12
Apple Security Update: About the security content of iOS 12
Product: iOS
Version: 12
CVE: CVE-2018-4197
Component: WebKit
Impact: Processing maliciously crafted web content may lead to arbitrary code execution
Description: A use after free issue was addressed with improved memory management.
apple
CVE-2018-4318HIGHCVSS 8.8PoCv122018-09-17
CVE-2018-4318 [HIGH] CVE-2018-4318: iOS 12
Apple Security Update: About the security content of iOS 12
Product: iOS
Version: 12
CVE: CVE-2018-4318
Component: WebKit
Impact: Processing maliciously crafted web content may lead to arbitrary code execution
Description: A use after free issue was addressed with improved memory management.
apple
CVE-2018-4340HIGHCVSS 7.8v122018-09-17
CVE-2018-4340 [HIGH] CVE-2018-4340: iOS 12
Apple Security Update: About the security content of iOS 12
Product: iOS
Version: 12
CVE: CVE-2018-4340
Component: Kernel
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: A memory corruption issue was addressed with improved memory handling.
apple
CVE-2018-4328HIGHCVSS 8.8PoCv122018-09-17
CVE-2018-4328 [HIGH] CVE-2018-4328: iOS 12
Apple Security Update: About the security content of iOS 12
Product: iOS
Version: 12
CVE: CVE-2018-4328
Component: WebKit
Impact: Processing maliciously crafted web content may lead to arbitrary code execution
Description: Multiple memory corruption issues were addressed with improved memory handling.
apple
CVE-2018-4311HIGHCVSS 8.1v122018-09-17
CVE-2018-4311 [HIGH] CVE-2018-4311: iOS 12
Apple Security Update: About the security content of iOS 12
Product: iOS
Version: 12
CVE: CVE-2018-4311
Component: WebKit
Impact: Cross-origin SecurityErrors includes the accessed frame’s origin
Description: The issue was addressed by removing origin information.
apple
CVE-2018-4358HIGHCVSS 8.8v122018-09-17
CVE-2018-4358 [HIGH] CVE-2018-4358: iOS 12
Apple Security Update: About the security content of iOS 12
Product: iOS
Version: 12
CVE: CVE-2018-4358
Component: WebKit
Impact: Processing maliciously crafted web content may lead to arbitrary code execution
Description: Multiple memory corruption issues were addressed with improved memory handling.
apple
CVE-2018-4126HIGHCVSS 7.8v122018-09-17
CVE-2018-4126 [HIGH] CVE-2018-4126: iOS 12
Apple Security Update: About the security content of iOS 12
Product: iOS
Version: 12
CVE: CVE-2018-4126
Component: CFNetwork
Impact: An application may be able to execute arbitrary code with system privileges
Description: A memory corruption issue was addressed with improved memory handling.
apple