Apple iOS vulnerabilities
3,940 known vulnerabilities affecting apple/iphone_os.
Total CVEs
3,940
CISA KEV
92
actively exploited
Public exploits
248
Exploited in wild
79
Severity breakdown
CRITICAL313HIGH1610MEDIUM1730LOW287
Vulnerabilities
Page 165 of 197
CVE-2015-3686MEDIUMCVSS 6.8≤ 8.32015-07-03
CVE-2015-3686 [MEDIUM] CVE-2015-3686: CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrar
CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted text file, a different vulnerability than CVE-2015-3685, CVE-2015-3687, CVE-2015-3688, and CVE-2015-3689.
nvd
CVE-2015-3725MEDIUMCVSS 4.3≤ 8.32015-07-03
CVE-2015-3725 [MEDIUM] CWE-399 CVE-2015-3725: MobileInstallation in Apple iOS before 8.4 does not ensure the uniqueness of Watch bundle IDs, which
MobileInstallation in Apple iOS before 8.4 does not ensure the uniqueness of Watch bundle IDs, which allows attackers to cause a denial of service (ID collision and Watch launch outage) via a crafted universal provisioning profile app.
nvd
CVE-2015-3721MEDIUMCVSS 4.3≤ 8.32015-07-03
CVE-2015-3721 [MEDIUM] CWE-200 CVE-2015-3721: The kernel in Apple iOS before 8.4 and OS X before 10.10.4 does not properly handle HFS parameters,
The kernel in Apple iOS before 8.4 and OS X before 10.10.4 does not properly handle HFS parameters, which allows attackers to obtain sensitive memory-layout information via a crafted app.
nvd
CVE-2015-3726MEDIUMCVSS 4.6≤ 8.32015-07-03
CVE-2015-3726 [MEDIUM] CWE-20 CVE-2015-3726: The Telephony subsystem in Apple iOS before 8.4 allows physically proximate attackers to execute arb
The Telephony subsystem in Apple iOS before 8.4 allows physically proximate attackers to execute arbitrary code via a crafted (1) SIM or (2) UIM card.
nvd
CVE-2015-3694MEDIUMCVSS 6.8≤ 8.1.32015-07-03
CVE-2015-3694 [MEDIUM] CWE-119 CVE-2015-3694: FontParser in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitr
FontParser in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font file, a different vulnerability than CVE-2015-3719.
nvd
CVE-2015-3727MEDIUMCVSS 6.8≤ 8.32015-07-03
CVE-2015-3727 [MEDIUM] CWE-264 CVE-2015-3727: WebKit in Apple Safari before 6.2.7, 7.x before 7.1.7, and 8.x before 8.0.7, as used in Apple iOS be
WebKit in Apple Safari before 6.2.7, 7.x before 7.1.7, and 8.x before 8.0.7, as used in Apple iOS before 8.4 and other products, does not properly restrict rename operations on WebSQL tables, which allows remote attackers to access an arbitrary web site's database via a crafted web site.
nvd
CVE-2015-3724MEDIUMCVSS 6.8≤ 8.32015-07-03
CVE-2015-3724 [MEDIUM] CVE-2015-3724: CoreGraphics in Apple iOS before 8.4 allows remote attackers to execute arbitrary code or cause a de
CoreGraphics in Apple iOS before 8.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted ICC profile in a PDF document, a different vulnerability than CVE-2015-3723.
nvd
CVE-2015-3722MEDIUMCVSS 4.3≤ 8.32015-07-03
CVE-2015-3722 [MEDIUM] CWE-254 CVE-2015-3722: Application Store in Apple iOS before 8.4 does not ensure the uniqueness of bundle IDs, which allows
Application Store in Apple iOS before 8.4 does not ensure the uniqueness of bundle IDs, which allows attackers to cause a denial of service (ID collision and launch outage) via a crafted universal provisioning profile app.
nvd
CVE-2015-3689MEDIUMCVSS 6.8≤ 8.32015-07-03
CVE-2015-3689 [MEDIUM] CVE-2015-3689: CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrar
CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted text file, a different vulnerability than CVE-2015-3685, CVE-2015-3686, CVE-2015-3687, and CVE-2015-3688.
nvd
CVE-2015-3687MEDIUMCVSS 6.8≤ 8.32015-07-03
CVE-2015-3687 [MEDIUM] CVE-2015-3687: CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrar
CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted text file, a different vulnerability than CVE-2015-3685, CVE-2015-3686, CVE-2015-3688, and CVE-2015-3689.
nvd
CVE-2015-3658MEDIUMCVSS 6.8≤ 8.32015-07-03
CVE-2015-3658 [MEDIUM] CWE-254 CVE-2015-3658: The Page Loading functionality in WebKit in Apple Safari before 6.2.7, 7.x before 7.1.7, and 8.x bef
The Page Loading functionality in WebKit in Apple Safari before 6.2.7, 7.x before 7.1.7, and 8.x before 8.0.7, as used in Apple iOS before 8.4 and other products, does not properly consider redirects during decisions about sending an Origin header, which makes it easier for remote attackers to bypass CSRF protection mechanisms via a crafted web site.
nvd
CVE-2015-3659MEDIUMCVSS 6.8≤ 8.32015-07-03
CVE-2015-3659 [MEDIUM] CWE-264 CVE-2015-3659: The SQLite authorizer in the Storage functionality in WebKit in Apple Safari before 6.2.7, 7.x befor
The SQLite authorizer in the Storage functionality in WebKit in Apple Safari before 6.2.7, 7.x before 7.1.7, and 8.x before 8.0.7, as used in Apple iOS before 8.4 and other products, does not properly restrict access to SQL functions, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted
nvd
CVE-2015-3684MEDIUMCVSS 6.8≤ 8.32015-07-03
CVE-2015-3684 [MEDIUM] CWE-119 CVE-2015-3684: The HTTPAuthentication implementation in CFNetwork in Apple iOS before 8.4 and OS X before 10.10.4 a
The HTTPAuthentication implementation in CFNetwork in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted credentials in a URL.
nvd
CVE-2015-3728MEDIUMCVSS 4.8≤ 8.32015-07-03
CVE-2015-3728 [MEDIUM] CWE-254 CVE-2015-3728: The WiFi Connectivity feature in Apple iOS before 8.4 allows remote Wi-Fi access points to trigger a
The WiFi Connectivity feature in Apple iOS before 8.4 allows remote Wi-Fi access points to trigger an automatic association, with an arbitrary security type, by operating with a recognized ESSID within an 802.11 network's coverage area.
nvd
CVE-2015-3685MEDIUMCVSS 6.8≤ 8.32015-07-03
CVE-2015-3685 [MEDIUM] CWE-119 CVE-2015-3685: CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrar
CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted text file, a different vulnerability than CVE-2015-3686, CVE-2015-3687, CVE-2015-3688, and CVE-2015-3689.
nvd
CVE-2015-3688MEDIUMCVSS 6.8≤ 8.32015-07-03
CVE-2015-3688 [MEDIUM] CVE-2015-3688: CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrar
CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted text file, a different vulnerability than CVE-2015-3685, CVE-2015-3686, CVE-2015-3687, and CVE-2015-3689.
nvd
CVE-2015-1157HIGHCVSS 7.8v8.0v8.0.1+6 more2015-05-28
CVE-2015-1157 [HIGH] CWE-17 CVE-2015-1157: CoreText in Apple iOS 8.x through 8.3 allows remote attackers to cause a denial of service (reboot a
CoreText in Apple iOS 8.x through 8.3 allows remote attackers to cause a denial of service (reboot and messaging disruption) via crafted Unicode text that is not properly handled during display truncation in the Notifications feature, as demonstrated by Arabic characters in (1) an SMS message or (2) a WhatsApp message.
nvd
CVE-2014-8146HIGHCVSS 7.5PoC≤ 8.22015-05-25
CVE-2014-8146 [HIGH] CWE-119 CVE-2014-8146: The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implemen
The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) before 55.1 does not properly track directionally isolated pieces of text, which allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly execute arbitrary
nvd
CVE-2015-4000LOWCVSS 3.7PoC≤ 8.32015-05-21
CVE-2015-4000 [LOW] CWE-310 CVE-2015-4000: The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a
The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHE_EXPORT and then rewriting a ServerHello with DHE_EXPORT replaced by DHE, a
nvd
CVE-2015-1152MEDIUMCVSS 6.8≤ 8.32015-05-08
CVE-2015-1152 [MEDIUM] CVE-2015-1152: WebKit, as used in Apple Safari before 6.2.6, 7.x before 7.1.6, and 8.x before 8.0.6, allows remote
WebKit, as used in Apple Safari before 6.2.6, 7.x before 7.1.6, and 8.x before 8.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2015-1153 and CVE-2015-1154.
nvd