CVE-2026-20660

A path handling issue was addressed with improved logic. This issue is fixed in Safari 26.3, iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3, macOS Sequoia 15.7.5, macOS Sonoma 14.8.4, macOS Tahoe 26.3, visionOS 26.3. A remote user may be able to write arbitrary files...

Hackers Could Take Over Apple Devices Via Malicious Images – Patch Now!

Apple fixes CVE-2025-43300, a flaw letting hackers hijack devices via malicious images. Users urged to update iPhone, iPad,…...

VulnCheck KEV: CVE-2020-9870

A logic issue was addressed with improved validation. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8. An attacker with memory write capability may be able to bypass pointer authentication codes and run arbitrary code...

CVE-2023-40438

An issue was addressed with improved handling of temporary files. This issue is fixed in macOS Sonoma 14, iOS 16.7 and iPadOS 16.7. An app may be able to access edited photos saved to a temporary directory...

PT-2023-7113 · Mozilla · Firefox For Ios

Name of the Vulnerable Software and Affected Versions: Firefox for iOS versions prior to 120 Description: The issue is related to the Reader Mode in Firefox for iOS, where the browser fails to neutralize HTML tags, allowing an attacker to perform HTML template injection. This could enable a remot...

VulnCheck KEV: CVE-2022-42846

The issue was addressed with improved memory handling. This issue is fixed in iOS 16.2 and iPadOS 16.2, iOS 15.7.2 and iPadOS 15.7.2. Parsing a maliciously crafted video file may lead to unexpected system termination...

Apple iOS 和 iPadOS 权限许可和访问控制问题漏洞

Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A vulnerability in privilege permission and access control issues exists in Apple iOS prior to 15.6 and iPadOS prior to...

Unspecified Vulnerability in Apple iOS and iPadOS Sandbox Components

Apple iOS and Apple iPadOS are both products of Apple Inc. Apple iOS is an operating system developed for mobile devices. apple iPadOS is an operating system for the iPad tablet computer. sandbox is a sandbox component. A security vulnerability exists in the Sandbox component of Apple iOS before...

Code injection

DMM Movie Player App for Android before 1.2.1, and DMM Movie Player App for iPhone/iPad before 2.1.3 does not verify SSL certificates...

CVE-2016-4829

DMM Movie Player App for Android before 1.2.1, and DMM Movie Player App for iPhone/iPad before 2.1.3 does not verify SSL certificates...

DMM Movie Player App for Android and for iPhone/iPad Man-in-the-Middle Attack Vulnerability

DMM Movie Player App is a suite of video player applications from DMM Japan. A security vulnerability exists in DMM Movie Player App for Android before 1.2.1 and for iPhone/iPad before 2.1.3, which originates from the program failing to validate an SSL server-side certificate. An attacker could u...

JVN#39594409: DMM Movie Player App fails to verify SSL server certificates

DMM Movie Player App provided by DMM.com Labo Co.,Ltd. fails to verify SSL server certificates. Impact A man-in-the-middle attack may allow an attacker to eavesdrop on an encrypted communication. Solution Update the Application Update to the latest version according to the information provided by...

Easy FTP Pro 4.2 iOS - Command Injection

Easy FTP Pro 4.2 iOS - Command Injection Document Title: =============== Easy FTP Pro v4.2 iOS - Command Inject Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1291 Release Date: ============= 2014-08-06 Vulnerability Laboratory ID VL-ID:...

Files Desk Pro v1.4 iOS - File Include Web Vulnerability

Document Title: =============== Files Desk Pro v1.4 iOS - File Include Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1266 Release Date: ============= 2014-05-15 Vulnerability Laboratory ID VL-ID: ====================================...

Files Desk Pro v1.4 iOS - File Include Web Vulnerability

Document Title: =============== Files Desk Pro v1.4 iOS - File Include Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1266 Release Date: ============= 2014-05-15 Vulnerability Laboratory ID VL-ID: ====================================...

iphone/ipad phone drive 1.1.1 - Directory Traversal

!/usr/bin/python ---------------------------------------------------------------- Software : iPhone/iPad Phone Drive 1.1.1 Type of vulnerability : Directory Traversal Tested On : iPhone 4 IOS 4.3.3/Jailbroken ---------------------------------------------------------------- Program Developer :...

iPhone/iPad Phone Drive 1.1.1 Directory Traversal

!/usr/bin/python ---------------------------------------------------------------- Software : iPhone/iPad Phone Drive 1.1.1 Type of vulnerability : Directory Traversal Tested On : iPhone 4 IOS 4.3.3/Jailbroken ---------------------------------------------------------------- Program Developer :...

iPhone/iPad Phone Drive 1.1.1 Directory Traversal

Exploit for hardware platform in category remote exploits !/usr/bin/python ---------------------------------------------------------------- Software : iPhone/iPad Phone Drive 1.1.1 Type of vulnerability : Directory Traversal Tested On : iPhone 4 IOS 4.3.3/Jailbroken...

TWSL2011-007: iOS SSL Implementation Does Not Validate Certificate Chain

Trustwave's SpiderLabs Security Advisory TWSL2011-007: iOS SSL Implementation Does Not Validate Certificate Chain https://www.trustwave.com/spiderlabs/advisories/TWSL2011-007.txt Published: 2011-07-25 Version: 1.0 Vendor: Apple http://www.apple.com Product: iOS Version affected: Versions Prior to...