Apple Ios And Ipados vulnerabilities

1,463 known vulnerabilities affecting apple/ios_and_ipados.

Total CVEs

1,463

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL73HIGH563MEDIUM708LOW119

Vulnerabilities

Page 69 of 74

CVE-2020-27943HIGHCVSS 7.8≥ unspecified, < 14.32021-04-02

CVE-2020-27943 [HIGH] CWE-787 CVE-2020-27943: A memory corruption issue existed in the processing of font files. This issue was addressed with imp A memory corruption issue existed in the processing of font files. This issue was addressed with improved input validation. This issue is fixed in tvOS 14.3, iOS 14.3 and iPadOS 14.3, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, watchOS 7.2. Processing a maliciously crafted font file may lead to arbitrary cod

nvd

CVE-2020-9962HIGHCVSS 7.8≥ unspecified, < 14.02021-04-02

CVE-2020-9962 [HIGH] CWE-120 CVE-2020-9962: A buffer overflow was addressed with improved size validation. This issue is fixed in macOS Big Sur A buffer overflow was addressed with improved size validation. This issue is fixed in macOS Big Sur 11.0.1, tvOS 14.0, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, watchOS 7.0, iOS 14.0 and iPadOS 14.0. Processing a maliciously crafted image may lead to arbitrary code execution.

nvd

CVE-2021-1743HIGHCVSS 7.8≥ unspecified, < 14.42021-04-02

CVE-2021-1743 [HIGH] CWE-125 CVE-2021-1743: An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. Processing a maliciously crafted image may lead to arbitrary code execution.

nvd

CVE-2021-1758HIGHCVSS 7.8≥ unspecified, < 14.42021-04-02

CVE-2021-1758 [HIGH] CWE-125 CVE-2021-1758: An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. A remote attacker may be able to cause arbitrary code execution.

nvd

CVE-2020-29618HIGHCVSS 7.8≥ unspecified, < 14.32021-04-02

CVE-2020-29618 [HIGH] CWE-125 CVE-2020-29618: An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 14.3 An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 14.3, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, iOS 14.3 and iPadOS 14.3, iCloud for Windows 12.0, watchOS 7.2. Processing a maliciously crafted image may lead to arbitrary code execution.

nvd

CVE-2020-27944HIGHCVSS 7.8≥ unspecified, < 14.32021-04-02

CVE-2020-27944 [HIGH] CWE-787 CVE-2020-27944: A memory corruption issue existed in the processing of font files. This issue was addressed with imp A memory corruption issue existed in the processing of font files. This issue was addressed with improved input validation. This issue is fixed in watchOS 7.2, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, iOS 14.3 and iPadOS 14.3, tvOS 14.3. Processing a maliciously crafted font file may lead to arbitrary cod

nvd

CVE-2020-29639MEDIUMCVSS 5.5≥ unspecified, < 14.02021-04-02

CVE-2020-29639 [MEDIUM] CWE-125 CVE-2020-29639: An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 14.0 An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 14.0 and iPadOS 14.0. Processing a maliciously crafted font may result in the disclosure of process memory.

nvd

CVE-2021-1780MEDIUMCVSS 4.4≥ unspecified, < 14.42021-04-02

CVE-2021-1780 [MEDIUM] CWE-665 CVE-2021-1780: A memory initialization issue was addressed with improved memory handling. This issue is fixed in iO A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 14.4 and iPadOS 14.4. An attacker in a privileged position may be able to perform a denial of service attack.

nvd

CVE-2021-1879MEDIUMCVSS 6.1KEV≥ unspecified, < 14.42021-04-02

CVE-2021-1879 [MEDIUM] CWE-79 CVE-2021-1879: This issue was addressed by improved management of object lifetimes. This issue is fixed in iOS 12.5 This issue was addressed by improved management of object lifetimes. This issue is fixed in iOS 12.5.2, iOS 14.4.2 and iPadOS 14.4.2, watchOS 7.3.3. Processing maliciously crafted web content may lead to universal cross site scripting. Apple is aware of a report that this issue may have been actively exploited..

nvd

CVE-2021-1797MEDIUMCVSS 5.5≥ unspecified, < 14.42021-04-02

CVE-2021-1797 [MEDIUM] CVE-2021-1797: The issue was addressed with improved permissions logic. This issue is fixed in macOS Big Sur 11.2, The issue was addressed with improved permissions logic. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. A local user may be able to read arbitrary files.

nvd

CVE-2020-29615MEDIUMCVSS 5.5≥ unspecified, < 14.32021-04-02

CVE-2020-29615 [MEDIUM] CWE-125 CVE-2020-29615: An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 7 An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 7.2, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, iOS 14.3 and iPadOS 14.3, tvOS 14.3. Processing a maliciously crafted image may lead to a denial of service.

nvd

CVE-2021-1781MEDIUMCVSS 5.5≥ unspecified, < 14.42021-04-02

CVE-2021-1781 [MEDIUM] CVE-2021-1781: A privacy issue existed in the handling of Contact cards. This was addressed with improved state man A privacy issue existed in the handling of Contact cards. This was addressed with improved state management. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS 14.4 and iPadOS 14.4. A malicious application may be able to leak sensitive user information.

nvd

CVE-2021-1799MEDIUMCVSS 6.5≥ unspecified, < 14.42021-04-02

CVE-2021-1799 [MEDIUM] CVE-2021-1799: A port redirection issue was addressed with additional port validation. This issue is fixed in macOS A port redirection issue was addressed with additional port validation. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, tvOS 14.4, watchOS 7.3, iOS 14.4 and iPadOS 14.4, Safari 14.0.3. A malicious website may be able to access restricted ports on arbitrary servers.

nvd

CVE-2021-1773MEDIUMCVSS 5.5≥ unspecified, < 14.42021-04-02

CVE-2021-1773 [MEDIUM] CVE-2021-1773: A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11. A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. Processing a maliciously crafted image may lead to a denial of service.

nvd

CVE-2021-1778MEDIUMCVSS 5.5≥ unspecified, < 14.42021-04-02

CVE-2021-1778 [MEDIUM] CWE-125 CVE-2021-1778: An out-of-bounds read issue existed in the curl. This issue was addressed with improved bounds check An out-of-bounds read issue existed in the curl. This issue was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. Processing a maliciously crafted image may lead to a denial of service.

nvd

CVE-2021-1766MEDIUMCVSS 5.5≥ unspecified, < 14.42021-04-02

CVE-2021-1766 [MEDIUM] CVE-2021-1766: This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.2, Security U This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. Processing a maliciously crafted image may lead to a denial of service.

nvd

CVE-2021-1791MEDIUMCVSS 5.5≥ unspecified, < 14.42021-04-02

CVE-2021-1791 [MEDIUM] CWE-125 CVE-2021-1791: An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. A malicious application may be able to disclose kernel memory

nvd

CVE-2021-1801MEDIUMCVSS 6.5≥ unspecified, < 14.42021-04-02

CVE-2021-1801 [MEDIUM] CVE-2021-1801: This issue was addressed with improved iframe sandbox enforcement. This issue is fixed in macOS Big This issue was addressed with improved iframe sandbox enforcement. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. Maliciously crafted web content may violate iframe sandboxing policy.

nvd

CVE-2020-27935MEDIUMCVSS 6.3≥ unspecified, < 14.22021-04-02

CVE-2020-27935 [MEDIUM] CVE-2020-27935: Multiple issues were addressed with improved logic. This issue is fixed in iOS 14.2 and iPadOS 14.2, Multiple issues were addressed with improved logic. This issue is fixed in iOS 14.2 and iPadOS 14.2, macOS Big Sur 11.0.1, watchOS 7.1, tvOS 14.2. A sandboxed process may be able to circumvent sandbox restrictions.

nvd

CVE-2021-1786MEDIUMCVSS 5.5≥ unspecified, < 14.42021-04-02

CVE-2021-1786 [MEDIUM] CVE-2021-1786: A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11. A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. A local user may be able to create or modify system files.

nvd

← Previous69 / 74Next →