Apple iOS vulnerabilities
1,765 known vulnerabilities affecting apple/ios.
Total CVEs
1,765
CISA KEV
27
actively exploited
Public exploits
229
Exploited in wild
43
Severity breakdown
CRITICAL119HIGH907MEDIUM638LOW94UNKNOWN7
Vulnerabilities
Page 47 of 89
CVE-2016-7576P4HIGHCVSS 7.8v9.3.32016-07-18
CVE-2016-7576 [HIGH] CVE-2016-7576: iOS 9.3.3
Apple Security Update: About the security content of iOS 9.3.3
Product: iOS
Version: 9.3.3
CVE: CVE-2016-7576
Component: GasGauge
Impact: A malicious application may be able to execute arbitrary code with kernel privileges
Description: A memory corruption issue existed in the kernel. This issue was addressed through improved memory handling.
apple
CVE-2017-7069P4HIGHCVSS 7.8v10.3.32017-07-19
CVE-2017-7069 [HIGH] CVE-2017-7069: iOS 10.3.3
Apple Security Update: About the security content of iOS 10.3.3
Product: iOS
Version: 10.3.3
CVE: CVE-2017-7069
Component: Kernel
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: A memory corruption issue was addressed with improved memory handling.
apple
CVE-2016-7655P4HIGHCVSS 7.8v10.22016-12-12
CVE-2016-7655 [HIGH] CVE-2016-7655: iOS 10.2
Apple Security Update: About the security content of iOS 10.2
Product: iOS
Version: 10.2
CVE: CVE-2016-7655
Component: CoreMedia External Displays
Impact: A local application may be able to execute arbitrary code in the context of the mediaserver daemon
Description: A type confusion issue was addressed through improved memory handling.
apple
CVE-2017-13879P4HIGHCVSS 7.8v11.22017-12-02
CVE-2017-13879 [HIGH] CVE-2017-13879: iOS 11.2
Apple Security Update: About the security content of iOS 11.2
Product: iOS
Version: 11.2
CVE: CVE-2017-13879
Component: IOMobileFrameBuffer
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: A memory corruption issue was addressed with improved memory handling.
apple
CVE-2019-8637P3HIGHCVSS 7.8≥ unspecified, < iOS 12.32019-12-18
CVE-2019-8637 [HIGH] CWE-20 CVE-2019-8637: An input validation issue was addressed with improved input validation. This issue is fixed in iOS 1
An input validation issue was addressed with improved input validation. This issue is fixed in iOS 12.3, tvOS 12.3, watchOS 5.2.1. A malicious application may be able to gain root privileges.
nvdapple
CVE-2017-2398P4HIGHCVSS 7.8v10.32017-03-27
CVE-2017-2398 [HIGH] CVE-2017-2398: iOS 10.3
Apple Security Update: About the security content of iOS 10.3
Product: iOS
Version: 10.3
CVE: CVE-2017-2398
Component: Kernel
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: A memory corruption issue was addressed through improved input validation.
apple
CVE-2016-7606P4HIGHCVSS 7.8v10.22016-12-12
CVE-2016-7606 [HIGH] CVE-2016-7606: iOS 10.2
Apple Security Update: About the security content of iOS 10.2
Product: iOS
Version: 10.2
CVE: CVE-2016-7606
Component: Kernel
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: Multiple memory corruption issues were addressed through improved input validation.
apple
CVE-2016-7616P4HIGHCVSS 7.8v10.22016-12-12
CVE-2016-7616 [HIGH] CVE-2016-7616: iOS 10.2
Apple Security Update: About the security content of iOS 10.2
Product: iOS
Version: 10.2
CVE: CVE-2016-7616
Component: Disk Images
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: A memory corruption issue was addressed through improved input validation.
apple
CVE-2017-7127P3HIGHCVSS 7.8v112017-09-19
CVE-2017-7127 [HIGH] CVE-2017-7127: iOS 11
Apple Security Update: About the security content of iOS 11
Product: iOS
Version: 11
CVE: CVE-2017-7127
Component: SQLite
Impact: An application may be able to execute arbitrary code with system privileges
Description: A memory corruption issue was addressed with improved memory handling.
apple
CVE-2017-0381P4HIGHCVSS 7.8v112017-09-19
CVE-2017-0381 [HIGH] CVE-2017-0381: iOS 11
Apple Security Update: About the security content of iOS 11
Product: iOS
Version: 11
CVE: CVE-2017-0381
Component: CoreAudio
Impact: An application may be able to read restricted memory
Description: An out-of-bounds read was addressed by updating to Opus version 1.1.4.
apple
CVE-2018-4465P4HIGHCVSS 7.8v12.1.12018-12-05
CVE-2018-4465 [HIGH] CVE-2018-4465: iOS 12.1.1
Apple Security Update: About the security content of iOS 12.1.1
Product: iOS
Version: 12.1.1
CVE: CVE-2018-4465
Component: Disk Images
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: A memory corruption issue was addressed with improved memory handling.
apple
CVE-2016-7613P3HIGHCVSS 7.8v10.12016-10-24
CVE-2016-7613 [HIGH] CVE-2016-7613: iOS 10.1
Apple Security Update: About the security content of iOS 10.1
Product: iOS
Version: 10.1
CVE: CVE-2016-7613
Component: Kernel
Impact: A local application may be able to execute arbitrary code with root privileges
Description: Multiple object lifetime issues existed when spawning new processes. These were addressed through improved validation.
apple
CVE-2022-32907P3HIGHCVSS 7.8≥ unspecified, < 162022-11-01
CVE-2022-32907 [HIGH] CWE-269 CVE-2022-32907: This issue was addressed with improved checks. This issue is fixed in tvOS 16, iOS 16, watchOS 9. An
This issue was addressed with improved checks. This issue is fixed in tvOS 16, iOS 16, watchOS 9. An app may be able to execute arbitrary code with kernel privileges.
nvdapple
CVE-2022-32908P3HIGHCVSS 7.8≥ unspecified, < 162022-09-20
CVE-2022-32908 [HIGH] CWE-787 CVE-2022-32908: A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS
A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.6, iOS 15.7 and iPadOS 15.7, iOS 16, macOS Big Sur 11.7. A user may be able to elevate privileges.
nvdapple
CVE-2020-3860P3HIGHCVSS 7.8≥ unspecified, < iOS 13.3.1 and iPadOS 13.3.12020-02-27
CVE-2020-3860 [HIGH] CWE-20 CVE-2020-3860: A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 1
A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, watchOS 6.1.2. An application may be able to execute arbitrary code with kernel privileges.
nvd
CVE-2022-32903P3HIGHCVSS 7.8≥ unspecified, < 162022-11-01
CVE-2022-32903 [HIGH] CWE-416 CVE-2022-32903: A use after free issue was addressed with improved memory management. This issue is fixed in tvOS 16
A use after free issue was addressed with improved memory management. This issue is fixed in tvOS 16, iOS 16, watchOS 9. An app may be able to execute arbitrary code with kernel privileges.
nvdapple
CVE-2016-4582P3HIGHCVSS 7.8v9.3.32016-07-18
CVE-2016-4582 [HIGH] CVE-2016-4582: iOS 9.3.3
Apple Security Update: About the security content of iOS 9.3.3
Product: iOS
Version: 9.3.3
CVE: CVE-2016-4582
Component: Kernel
Impact: A local user may be able to execute arbitrary code with kernel privileges
Description: Multiple memory corruption issues were addressed through improved memory handling.
apple
CVE-2022-32899P3HIGHCVSS 7.8v162022-09-12
CVE-2022-32899 [HIGH] CVE-2022-32899: iOS 16
Apple Security Update: About the security content of iOS 16
Product: iOS
Version: 16
CVE: CVE-2022-32899
Impact: An app may be able to execute arbitrary code with kernel privileges
Description: The issue was addressed with improved memory handling.
apple
CVE-2016-4653P3HIGHCVSS 7.8v9.3.32016-07-18
CVE-2016-4653 [HIGH] CVE-2016-4653: iOS 9.3.3
Apple Security Update: About the security content of iOS 9.3.3
Product: iOS
Version: 9.3.3
CVE: CVE-2016-4653
Component: Kernel
Impact: A local user may be able to execute arbitrary code with kernel privileges
Description: Multiple memory corruption issues were addressed through improved memory handling.
apple
CVE-2016-1722P3HIGHCVSS 7.8v9.2.1
CVE-2016-1722 [HIGH] CVE-2016-1722: iOS 9.2.1
Apple Security Update: About the security content of iOS 9.2.1
Product: iOS
Version: 9.2.1
CVE: CVE-2016-1722
Component: CVE-ID
apple