Apple iOS vulnerabilities

CVE-2016-1786 [MEDIUM] CVE-2016-1786: iOS 9.3 Apple Security Update: About the security content of iOS 9.3 Product: iOS Version: 9.3 CVE: CVE-2016-1786 Component: CVE-ID

CVE-2022-42790 [MEDIUM] CVE-2022-42790: iOS 16 Apple Security Update: About the security content of iOS 16 Product: iOS Version: 16 CVE: CVE-2022-42790 Component: Sidecar Impact: A user may be able to view restricted content from the lock screen Description: A logic issue was addressed with improved state management.

CVE-2020-3836 [MEDIUM] CVE-2020-3836: An access issue was addressed with improved memory management. This issue is fixed in iOS 13.3.1 and An access issue was addressed with improved memory management. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. A malicious application may be able to determine kernel memory layout.

CVE-2018-4223 [MEDIUM] CVE-2018-4223: iOS 11.4 Apple Security Update: About the security content of iOS 11.4 Product: iOS Version: 11.4 CVE: CVE-2018-4223 Component: Security Impact: A local user may be able to read a persistent account identifier Description: An authorization issue was addressed with improved state management.

CVE-2022-32854 [MEDIUM] CVE-2022-32854: This issue was addressed with improved checks. This issue is fixed in iOS 15.7 and iPadOS 15.7, iOS This issue was addressed with improved checks. This issue is fixed in iOS 15.7 and iPadOS 15.7, iOS 16, macOS Big Sur 11.7. An app may be able to bypass Privacy preferences.

CVE-2021-30770 [MEDIUM] CWE-287 CVE-2021-30770: A logic issue was addressed with improved validation. This issue is fixed in iOS 14.7, tvOS 14.7, wa A logic issue was addressed with improved validation. This issue is fixed in iOS 14.7, tvOS 14.7, watchOS 7.6. An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations.

CVE-2019-8768 [MEDIUM] CVE-2019-8768: iOS 13 Apple Security Update: About the security content of iOS 13 Product: iOS Version: 13 CVE: CVE-2019-8768 Component: WebKit Impact: A user may be unable to delete browsing history items Description: "Clear History and Website Data" did not fully clear the history. The issue was addressed with improved data deletion.

CVE-2020-3869 [MEDIUM] CVE-2020-3869: An issue existed in the handling of the local user's self-view. The issue was corrected with improve An issue existed in the handling of the local user's self-view. The issue was corrected with improved logic. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1. A remote FaceTime user may be able to cause the local user's camera self-view to display the incorrect camera.

CVE-2018-4321 [MEDIUM] CVE-2018-4321: iOS 12 Apple Security Update: About the security content of iOS 12 Product: iOS Version: 12 CVE: CVE-2018-4321 Component: Auto Unlock Impact: A malicious application may be able to access local users AppleIDs Description: A validation issue existed in the entitlement verification. This issue was addressed with improved validation of the process entitlement.

CVE-2017-7145 [MEDIUM] CVE-2017-7145: iOS 11 Apple Security Update: About the security content of iOS 11 Product: iOS Version: 11 CVE: CVE-2017-7145 Component: Time Impact: "Setting Time Zone" may incorrectly indicate that it is using location Description: A permissions issue existed in the process that handles time zone information. The issue was resolved by modifying permissions.

CVE-2014-4465 [MEDIUM] CVE-2014-4465: iOS 8.1.3 Apple Security Update: About the security content of iOS 8.1.3 Product: iOS Version: 8.1.3 CVE: CVE-2014-4465 Component: CVE-ID

CVE-2020-3916 [MEDIUM] CVE-2020-3916: An access issue was addressed with additional sandbox restrictions. This issue is fixed in iOS 13.4 An access issue was addressed with additional sandbox restrictions. This issue is fixed in iOS 13.4 and iPadOS 13.4, watchOS 6.2. Setting an alternate app icon may disclose a photo without needing permission to access photos.

CVE-2017-7146 [MEDIUM] CVE-2017-7146: iOS 11 Apple Security Update: About the security content of iOS 11 Product: iOS Version: 11 CVE: CVE-2017-7146 Component: Security Impact: A malicious app may be able to track users between installs Description: A permission checking issue existed in the handling of an app's Keychain data. This issue was addressed with improved permission checking.

CVE-2015-1110 [MEDIUM] CVE-2015-1110: iOS 8.3 Apple Security Update: About the security content of iOS 8.3 Product: iOS Version: 8.3 CVE: CVE-2015-1110 Component: CVE-ID

CVE-2015-3753 [MEDIUM] CVE-2015-3753: iOS 8.4.1 Apple Security Update: About the security content of iOS 8.4.1 Product: iOS Version: 8.4.1 CVE: CVE-2015-3753 Component: CVE-ID

CVE-2015-5746 [MEDIUM] CVE-2015-5746: iOS 8.4.1 Apple Security Update: About the security content of iOS 8.4.1 Product: iOS Version: 8.4.1 CVE: CVE-2015-5746 Component: CVE-ID

CVE-2015-5766 [MEDIUM] CVE-2015-5766: iOS 8.4.1 Apple Security Update: About the security content of iOS 8.4.1 Product: iOS Version: 8.4.1 CVE: CVE-2015-5766 Component: CVE-ID

CVE-2015-7037 [MEDIUM] CVE-2015-7037: iOS 9.2 Apple Security Update: About the security content of iOS 9.2 Product: iOS Version: 9.2 CVE: CVE-2015-7037 Component: CVE-ID

CVE-2015-7004 [HIGH] CVE-2015-7004: iOS 9.1 Apple Security Update: About the security content of iOS 9.1 Product: iOS Version: 9.1 CVE: CVE-2015-7004 Component: CVE-ID

CVE-2015-3728 [MEDIUM] CVE-2015-3728: iOS 8.4 Apple Security Update: About the security content of iOS 8.4 Product: iOS Version: 8.4 CVE: CVE-2015-3728 Component: CVE-ID