Apple iOS vulnerabilities
3,941 known vulnerabilities affecting apple/iphone_os.
Total CVEs
3,941
CISA KEV
92
actively exploited
Public exploits
248
Exploited in wild
79
Severity breakdown
CRITICAL313HIGH1610MEDIUM1731LOW287
Vulnerabilities
Page 186 of 198
CVE-2012-0605CRITICALCVSS 9.3fixed in 5.12012-03-08
CVE-2012-0605 [CRITICAL] CWE-119 CVE-2012-0605: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0591CRITICALCVSS 9.3fixed in 5.12012-03-08
CVE-2012-0591 [CRITICAL] CWE-119 CVE-2012-0591: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0612CRITICALCVSS 9.3fixed in 5.12012-03-08
CVE-2012-0612 [CRITICAL] CWE-119 CVE-2012-0612: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0603CRITICALCVSS 9.3fixed in 5.12012-03-08
CVE-2012-0603 [CRITICAL] CWE-119 CVE-2012-0603: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0628CRITICALCVSS 9.3fixed in 5.12012-03-08
CVE-2012-0628 [CRITICAL] CWE-119 CVE-2012-0628: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0618CRITICALCVSS 9.3fixed in 5.12012-03-08
CVE-2012-0618 [CRITICAL] CWE-119 CVE-2012-0618: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0615CRITICALCVSS 9.3fixed in 5.12012-03-08
CVE-2012-0615 [CRITICAL] CWE-119 CVE-2012-0615: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0630CRITICALCVSS 9.3fixed in 5.12012-03-08
CVE-2012-0630 [CRITICAL] CWE-119 CVE-2012-0630: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0610CRITICALCVSS 9.3fixed in 5.12012-03-08
CVE-2012-0610 [CRITICAL] CWE-119 CVE-2012-0610: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2011-2833CRITICALCVSS 9.3fixed in 5.12012-03-08
CVE-2011-2833 [CRITICAL] CWE-119 CVE-2011-2833: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2011-2869CRITICALCVSS 9.3fixed in 5.12012-03-08
CVE-2011-2869 [CRITICAL] CWE-119 CVE-2011-2869: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0594CRITICALCVSS 9.3fixed in 5.12012-03-08
CVE-2012-0594 [CRITICAL] CWE-119 CVE-2012-0594: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0607CRITICALCVSS 9.3fixed in 5.12012-03-08
CVE-2012-0607 [CRITICAL] CWE-119 CVE-2012-0607: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2011-2867CRITICALCVSS 9.3fixed in 5.12012-03-08
CVE-2011-2867 [CRITICAL] CWE-119 CVE-2011-2867: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0620CRITICALCVSS 9.3fixed in 5.12012-03-08
CVE-2012-0620 [CRITICAL] CWE-119 CVE-2012-0620: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0632CRITICALCVSS 9.3fixed in 5.12012-03-08
CVE-2012-0632 [CRITICAL] CWE-119 CVE-2012-0632: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0621CRITICALCVSS 9.3fixed in 5.12012-03-08
CVE-2012-0621 [CRITICAL] CWE-119 CVE-2012-0621: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0592CRITICALCVSS 9.3fixed in 5.12012-03-08
CVE-2012-0592 [CRITICAL] CWE-119 CVE-2012-0592: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0593CRITICALCVSS 9.3fixed in 5.12012-03-08
CVE-2012-0593 [CRITICAL] CWE-119 CVE-2012-0593: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd
CVE-2012-0601CRITICALCVSS 9.3fixed in 5.12012-03-08
CVE-2012-0601 [CRITICAL] CWE-119 CVE-2012-0601: WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a
WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-03-07-1 and APPLE-SA-2012-03-07-2.
nvd