Apple iOS vulnerabilities
1,765 known vulnerabilities affecting apple/ios.
Total CVEs
1,765
CISA KEV
27
actively exploited
Public exploits
229
Exploited in wild
43
Severity breakdown
CRITICAL119HIGH907MEDIUM638LOW94UNKNOWN7
Vulnerabilities
Page 80 of 89
CVE-2015-7040P4MEDIUMCVSS 4.3v9.2
CVE-2015-7040 [MEDIUM] CVE-2015-7040: iOS 9.2
Apple Security Update: About the security content of iOS 9.2
Product: iOS
Version: 9.2
CVE: CVE-2015-7040
Component: CVE-ID
apple
CVE-2015-7116P4MEDIUMCVSS 4.3v9.2
CVE-2015-7116 [MEDIUM] CVE-2015-7116: iOS 9.2
Apple Security Update: About the security content of iOS 9.2
Product: iOS
Version: 9.2
CVE: CVE-2015-7116
Component: CVE-ID
apple
CVE-2015-7115P4MEDIUMCVSS 4.3v9.2
CVE-2015-7115 [MEDIUM] CVE-2015-7115: iOS 9.2
Apple Security Update: About the security content of iOS 9.2
Product: iOS
Version: 9.2
CVE: CVE-2015-7115
Component: CVE-ID
apple
CVE-2015-3729P4MEDIUMCVSS 4.3v8.4.1
CVE-2015-3729 [MEDIUM] CVE-2015-3729: iOS 8.4.1
Apple Security Update: About the security content of iOS 8.4.1
Product: iOS
Version: 8.4.1
CVE: CVE-2015-3729
Component: CVE-ID
apple
CVE-2022-32868P4MEDIUMCVSS 4.3≥ unspecified, < 162022-09-20
CVE-2022-32868 [MEDIUM] CVE-2022-32868: A logic issue was addressed with improved state management. This issue is fixed in Safari 16, iOS 16
A logic issue was addressed with improved state management. This issue is fixed in Safari 16, iOS 16, iOS 15.7 and iPadOS 15.7. A website may be able to track users through Safari web extensions.
nvdapple
CVE-2016-1864P4MEDIUMCVSS 4.3v9.3
CVE-2016-1864 [MEDIUM] CVE-2016-1864: iOS 9.3
Apple Security Update: About the security content of iOS 9.3
Product: iOS
Version: 9.3
CVE: CVE-2016-1864
Component: CVE-ID
apple
CVE-2015-5787P4MEDIUMCVSS 4.3v8.4.1
CVE-2015-5787 [MEDIUM] CVE-2015-5787: iOS 8.4.1
Apple Security Update: About the security content of iOS 8.4.1
Product: iOS
Version: 8.4.1
CVE: CVE-2015-5787
Component: CVE-ID
apple
CVE-2015-1091P4MEDIUMCVSS 4.3v8.3
CVE-2015-1091 [MEDIUM] CVE-2015-1091: iOS 8.3
Apple Security Update: About the security content of iOS 8.3
Product: iOS
Version: 8.3
CVE: CVE-2015-1091
Component: CVE-ID
apple
CVE-2017-7152P4MEDIUMCVSS 4.3v11.22017-12-02
CVE-2017-7152 [MEDIUM] CVE-2017-7152: iOS 11.2
Apple Security Update: About the security content of iOS 11.2
Product: iOS
Version: 11.2
CVE: CVE-2017-7152
Component: Mail Message Framework
Impact: Visiting a malicious website may lead to address bar spoofing
Description: An inconsistent user interface issue was addressed with improved state management.
apple
CVE-2016-7592P4MEDIUMCVSS 4.3v10.22016-12-12
CVE-2016-7592 [MEDIUM] CVE-2016-7592: iOS 10.2
Apple Security Update: About the security content of iOS 10.2
Product: iOS
Version: 10.2
CVE: CVE-2016-7592
Component: WebKit
Impact: Processing maliciously crafted web content may compromise user information
Description: An issue existed in handling of JavaScript prompts. This was addressed through improved state management.
apple
CVE-2017-13822P4MEDIUMCVSS 5.5v112017-09-19
CVE-2017-13822 [MEDIUM] CVE-2017-13822: iOS 11
Apple Security Update: About the security content of iOS 11
Product: iOS
Version: 11
CVE: CVE-2017-13822
Component: Quick Look
Impact: An application may be able to read restricted memory
Description: A validation issue was addressed with improved input sanitization.
apple
CVE-2017-13821P4MEDIUMCVSS 5.5v112017-09-19
CVE-2017-13821 [MEDIUM] CVE-2017-13821: iOS 11
Apple Security Update: About the security content of iOS 11
Product: iOS
Version: 11
CVE: CVE-2017-13821
Component: CFString
Impact: An application may be able to read restricted memory
Description: A validation issue was addressed with improved input sanitization.
apple
CVE-2019-8538P4MEDIUMCVSS 5.5≥ unspecified, < 12.22020-10-27
CVE-2019-8538 [MEDIUM] CVE-2019-8538: A denial of service issue was addressed with improved validation. This issue is fixed in watchOS 5.2
A denial of service issue was addressed with improved validation. This issue is fixed in watchOS 5.2, macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra, iOS 12.2. Processing a maliciously crafted vcf file may lead to a denial of service.
nvdapple
CVE-2018-4216P4MEDIUMCVSS 5.5v11.4.12018-07-09
CVE-2018-4216 [MEDIUM] CVE-2018-4216: iOS 11.4.1
Apple Security Update: About the security content of iOS 11.4.1
Product: iOS
Version: 11.4.1
CVE: CVE-2018-4216
Component: Phone
Impact: A malicious application may be able to bypass the call confirmation prompt
Description: A logic issue existed in the handling of call URLs. This issue was addressed with improved state management.
apple
CVE-2022-32827P4MEDIUMCVSS 5.5v162022-09-12
CVE-2022-32827 [MEDIUM] CVE-2022-32827: iOS 16
Apple Security Update: About the security content of iOS 16
Product: iOS
Version: 16
CVE: CVE-2022-32827
Component: AppleAVD
Impact: An app may be able to cause a denial-of-service
Description: A memory corruption issue was addressed with improved state management.
apple
CVE-2015-1090P4MEDIUMCVSS 5.0v8.3
CVE-2015-1090 [MEDIUM] CVE-2015-1090: iOS 8.3
Apple Security Update: About the security content of iOS 8.3
Product: iOS
Version: 8.3
CVE: CVE-2015-1090
Component: CVE-2015-1090
apple
CVE-2016-1728P4MEDIUMCVSS 4.3v9.2.1
CVE-2016-1728 [MEDIUM] CVE-2016-1728: iOS 9.2.1
Apple Security Update: About the security content of iOS 9.2.1
Product: iOS
Version: 9.2.1
CVE: CVE-2016-1728
Component: CVE-ID
apple
CVE-2015-5781P4MEDIUMCVSS 4.3v8.4.1
CVE-2015-5781 [MEDIUM] CVE-2015-5781: iOS 8.4.1
Apple Security Update: About the security content of iOS 8.4.1
Product: iOS
Version: 8.4.1
CVE: CVE-2015-5781
Component: CVE-ID
apple
CVE-2015-5782P4MEDIUMCVSS 4.3v8.4.1
CVE-2015-5782 [MEDIUM] CVE-2015-5782: iOS 8.4.1
Apple Security Update: About the security content of iOS 8.4.1
Product: iOS
Version: 8.4.1
CVE: CVE-2015-5782
Component: CVE-ID
apple
CVE-2015-1156P4MEDIUMCVSS 4.3v8.4
CVE-2015-1156 [MEDIUM] CVE-2015-1156: iOS 8.4
Apple Security Update: About the security content of iOS 8.4
Product: iOS
Version: 8.4
CVE: CVE-2015-1156
Component: CVE-ID
apple