Apple iOS vulnerabilities

CVE-2015-1097 [LOW] CVE-2015-1097: iOS 8.3 Apple Security Update: About the security content of iOS 8.3 Product: iOS Version: 8.3 CVE: CVE-2015-1097 Component: CVE-ID Impact: Opening a maliciously crafted iWork file may lead to arbitrary code execution Description: A memory corruption issue existed in the handling of iWork files. This issue was addressed through improved memory handling.

CVE-2015-1094 [LOW] CVE-2015-1094: iOS 8.3 Apple Security Update: About the security content of iOS 8.3 Product: iOS Version: 8.3 CVE: CVE-2015-1094 Component: CVE-ID

CVE-2015-1113 [LOW] CVE-2015-1113: iOS 8.3 Apple Security Update: About the security content of iOS 8.3 Product: iOS Version: 8.3 CVE: CVE-2015-1113 Component: CVE-ID

CVE-2016-4740 [LOW] CVE-2016-4740: iOS 10 Apple Security Update: About the security content of iOS 10 Product: iOS Version: 10 CVE: CVE-2016-4740 Component: Messages Impact: Messages may be visible on a device that has not signed in to Messages Description: An issue existed when using Handoff for Messages. This issue was resolved via better state management.

CVE-2017-13805 [LOW] CVE-2017-13805: iOS 11.1 Apple Security Update: About the security content of iOS 11.1 Product: iOS Version: 11.1 CVE: CVE-2017-13805 Component: Siri Impact: A person with physical access to an iOS device may be able to use Siri to read notifications of content that is set not to be displayed at the lock screen Description: An issue existed with Siri permissions. This was addressed with improved permission checking.

CVE-2022-32879 [LOW] CVE-2022-32879: iOS 16 Apple Security Update: About the security content of iOS 16 Product: iOS Version: 16 CVE: CVE-2022-32879 Component: Notifications Impact: A user with physical access to a device may be able to access contacts from the lock screen Description: A logic issue was addressed with improved state management.

CVE-2017-2397 [LOW] CVE-2017-2397: iOS 10.3 Apple Security Update: About the security content of iOS 10.3 Product: iOS Version: 10.3 CVE: CVE-2017-2397 Component: Accounts Impact: A user may be able to view an Apple ID from the lock screen Description: A prompt management issue was addressed by removing iCloud authentication prompts from the lock screen.

CVE-2022-32867 [LOW] CVE-2022-32867: iOS 16 Apple Security Update: About the security content of iOS 16 Product: iOS Version: 16 CVE: CVE-2022-32867 Component: Crash Reporter Impact: A user with physical access to an iOS device may be able to read past diagnostic logs Description: This issue was addressed with improved data protection.

CVE-2015-7000 [LOW] CVE-2015-7000: iOS 9.1 Apple Security Update: About the security content of iOS 9.1 Product: iOS Version: 9.1 CVE: CVE-2015-7000 Component: CVE-ID

CVE-2015-7080 [LOW] CVE-2015-7080: iOS 9.2 Apple Security Update: About the security content of iOS 9.2 Product: iOS Version: 9.2 CVE: CVE-2015-7080 Component: CVE-ID

CVE-2015-1064 [LOW] CVE-2015-1064: iOS 8.2 Apple Security Update: About the security content of iOS 8.2 Product: iOS Version: 8.2 CVE: CVE-2015-1064 Component: CVE-2015-1064

CVE-2016-7765 [LOW] CVE-2016-7765: iOS 10.2 Apple Security Update: About the security content of iOS 10.2 Product: iOS Version: 10.2 CVE: CVE-2016-7765 Component: Clipboard Impact: A local attacker may be able to access clipboard contents Description: The clipboard contents were accessible before device unlock. This issue was addressed through improved state management.

CVE-2022-32870 [LOW] CVE-2022-32870: iOS 16 Apple Security Update: About the security content of iOS 16 Product: iOS Version: 16 CVE: CVE-2022-32870 Component: Siri Impact: A user with physical access to a device may be able to use Siri to obtain some call history information Description: A logic issue was addressed with improved state management.

CVE-2022-32871 [LOW] CVE-2022-32871: A logic issue was addressed with improved restrictions. This issue is fixed in iOS 16. A person with A logic issue was addressed with improved restrictions. This issue is fixed in iOS 16. A person with physical access to a device may be able to use Siri to access private calendar information

CVE-2017-7058 [LOW] CVE-2017-7058: iOS 10.3.3 Apple Security Update: About the security content of iOS 10.3.3 Product: iOS Version: 10.3.3 CVE: CVE-2017-7058 Component: Notifications Impact: Notifications may appear on the lock screen when disabled Description: A lock screen issue was addressed with improved state management.

CVE-2017-2351 [LOW] CVE-2017-2351: iOS 10.2.1 Apple Security Update: About the security content of iOS 10.2.1 Product: iOS Version: 10.2.1 CVE: CVE-2017-2351 Component: Wi-Fi Impact: An activation-locked device can be manipulated to briefly present the home screen Description: An issue existed with handling user input that caused a device to present the home screen even when activation locked. This was addressed through improved input validation.

CVE-2016-7664 [LOW] CVE-2016-7664: iOS 10.2 Apple Security Update: About the security content of iOS 10.2 Product: iOS Version: 10.2 CVE: CVE-2016-7664 Component: Accessibility Impact: A person with physical access to an iOS device may be able to access photos and contacts from the lock screen Description: A lock screen issue allowed access to photos and contacts on a locked device. This issue was addressed by restricting options offered on a locked device.

CVE-2016-7653 [LOW] CVE-2016-7653: iOS 10.2 Apple Security Update: About the security content of iOS 10.2 Product: iOS Version: 10.2 CVE: CVE-2016-7653 Component: CVE-2016-7653

CVE-2016-1852 [LOW] CVE-2016-1852: iOS 9.3.2 Apple Security Update: About the security content of iOS 9.3.2 Product: iOS Version: 9.3.2 CVE: CVE-2016-1852 Component: CVE-ID

CVE-2018-4238 [LOW] CVE-2018-4238: iOS 11.4 Apple Security Update: About the security content of iOS 11.4 Product: iOS Version: 11.4 CVE: CVE-2018-4238 Component: Siri Impact: A person with physical access to an iOS device may be able to enable Siri from the lock screen Description: An issue existed with Siri permissions. This was addressed with improved permission checking.