Apple iOS vulnerabilities

CVE-2015-3721 [MEDIUM] CVE-2015-3721: iOS 8.4 Apple Security Update: About the security content of iOS 8.4 Product: iOS Version: 8.4 CVE: CVE-2015-3721 Component: CVE-ID

CVE-2015-3782 [MEDIUM] CVE-2015-3782: iOS 8.4.1 Apple Security Update: About the security content of iOS 8.4.1 Product: iOS Version: 8.4.1 CVE: CVE-2015-3782 Component: CVE-ID

CVE-2015-7058 [MEDIUM] CVE-2015-7058: iOS 9.2 Apple Security Update: About the security content of iOS 9.2 Product: iOS Version: 9.2 CVE: CVE-2015-7058 Component: CVE-2015-7058

CVE-2017-7144 [MEDIUM] CVE-2017-7144: iOS 11 Apple Security Update: About the security content of iOS 11 Product: iOS Version: 11 CVE: CVE-2017-7144 Component: WebKit Impact: A malicious website may be able to track users in Safari private browsing mode Description: A permissions issue existed in the handling of web browser cookies. This issue was addressed with improved restrictions.

CVE-2019-8769 [MEDIUM] CVE-2019-8769: An issue existed in the drawing of web page elements. The issue was addressed with improved logic. T An issue existed in the drawing of web page elements. The issue was addressed with improved logic. This issue is fixed in iOS 13.1 and iPadOS 13.1, macOS Catalina 10.15. Visiting a maliciously crafted website may reveal browsing history.

CVE-2017-7097 [MEDIUM] CVE-2017-7097: iOS 11 Apple Security Update: About the security content of iOS 11 Product: iOS Version: 11 CVE: CVE-2017-7097 Component: Mail MessageUI Impact: Processing a maliciously crafted image may lead to a denial of service Description: A memory corruption issue was addressed with improved validation.

CVE-2016-1752 [MEDIUM] CVE-2016-1752: iOS 9.3 Apple Security Update: About the security content of iOS 9.3 Product: iOS Version: 9.3 CVE: CVE-2016-1752 Component: CVE-ID

CVE-2018-4400 [MEDIUM] CVE-2018-4400: iOS 12.1 Apple Security Update: About the security content of iOS 12.1 Product: iOS Version: 12.1 CVE: CVE-2018-4400 Component: Security Impact: Processing a maliciously crafted S/MIME signed message may lead to a denial of service Description: A validation issue was addressed with improved logic.

CVE-2018-4365 [MEDIUM] CVE-2018-4365: iOS 12.1 Apple Security Update: About the security content of iOS 12.1 Product: iOS Version: 12.1 CVE: CVE-2018-4365 Component: Contacts Impact: Processing a maliciously crafted vcf file may lead to a denial of service Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2022-1622 [MEDIUM] CVE-2022-1622: iOS 16 Apple Security Update: About the security content of iOS 16 Product: iOS Version: 16 CVE: CVE-2022-1622 Component: CVE-2022-1622

CVE-2016-1865 [MEDIUM] CVE-2016-1865: iOS 9.3.3 Apple Security Update: About the security content of iOS 9.3.3 Product: iOS Version: 9.3.3 CVE: CVE-2016-1865 Component: Kernel Impact: A local user may be able to cause a system denial of service Description: A null pointer dereference was addressed through improved input validation.

CVE-2016-7615 [MEDIUM] CVE-2016-7615: iOS 10.2 Apple Security Update: About the security content of iOS 10.2 Product: iOS Version: 10.2 CVE: CVE-2016-7615 Component: Kernel Impact: A local user may be able to cause a system denial of service Description: A denial of service issue was addressed through improved memory handling.

CVE-2015-3763 [MEDIUM] CVE-2015-3763: iOS 8.4.1 Apple Security Update: About the security content of iOS 8.4.1 Product: iOS Version: 8.4.1 CVE: CVE-2015-3763 Component: CVE-2015-3763 Impact: An malicious app may be able to read other apps' managed preferences Description: An issue existed in the third-party app sandbox. This issue was addressed by improving the third-party sandbox profile.

CVE-2015-3690 [MEDIUM] CVE-2015-3690: iOS 8.4 Apple Security Update: About the security content of iOS 8.4 Product: iOS Version: 8.4 CVE: CVE-2015-3690 Component: CVE-ID

CVE-2015-3766 [MEDIUM] CVE-2015-3766: iOS 8.4.1 Apple Security Update: About the security content of iOS 8.4.1 Product: iOS Version: 8.4.1 CVE: CVE-2015-3766 Component: CVE-ID

CVE-2018-4440 [MEDIUM] CVE-2018-4440: iOS 12.1.1 Apple Security Update: About the security content of iOS 12.1.1 Product: iOS Version: 12.1.1 CVE: CVE-2018-4440 Component: Safari Impact: Visiting a malicious website may lead to address bar spoofing Description: A logic issue was addressed with improved state management.

CVE-2022-32795 [MEDIUM] CVE-2022-32795: This issue was addressed with improved checks. This issue is fixed in iOS 16, iOS 15.7 and iPadOS 15 This issue was addressed with improved checks. This issue is fixed in iOS 16, iOS 15.7 and iPadOS 15.7. Visiting a malicious website may lead to address bar spoofing.

CVE-2019-8550 [MEDIUM] CWE-459 CVE-2019-8550: An issue existed in the pausing of FaceTime video. The issue was resolved with improved logic. This An issue existed in the pausing of FaceTime video. The issue was resolved with improved logic. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, watchOS 5.2. A user’s video may not be paused in a FaceTime call if they exit the FaceTime app while the call is ringing.

CVE-2015-1125 [MEDIUM] CVE-2015-1125: iOS 8.3 Apple Security Update: About the security content of iOS 8.3 Product: iOS Version: 8.3 CVE: CVE-2015-1125 Component: CVE-ID

CVE-2020-3888 [MEDIUM] CVE-2020-3888: A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.4 and iPadOS 1 A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.4 and iPadOS 13.4. A maliciously crafted page may interfere with other web contexts.