Iphone Os Security Vulnerabilities and Issues — Page 4 of Iphone Os CVE List

Lucene search

AppleIphone Os

210 matches found

CVE•added 2025/05/12 10:15 p.m.•47 views

CVE-2025-31239

A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 11.5, macOS Sonoma 14.7.6, tvOS 18.5, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, macOS Ventura 13.7.6. Parsing a file may lead to an unexpected app termination.

4.3CVSS5.8AI score0.00062EPSS

CVE•added 2025/04/11 3:15 p.m.•46 views

CVE-2023-38614

A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to access sensitive user data.

4.3CVSS5.6AI score0.00022EPSS

CVE•added 2025/04/11 3:15 p.m.•46 views

CVE-2023-42969

An app may be able to break out of its sandbox. This issue is fixed in iOS 17 and iPadOS 17, iOS 16.7 and iPadOS 16.7, macOS Sonoma 14, macOS Ventura 13.6, macOS Monterey 12.7. The issue was addressed with improved handling of caches.

3.3CVSS5.9AI score0.00011EPSS

CVE•added 2025/03/31 11:15 p.m.•46 views

CVE-2025-24095

This issue was addressed with additional entitlement checks. This issue is fixed in visionOS 2.4, iOS 18.4 and iPadOS 18.4. An app may be able to bypass Privacy preferences.

7.6CVSS5.9AI score0.00034EPSS

CVE•added 2025/01/27 10:15 p.m.•46 views

CVE-2025-24117

This issue was addressed with improved redaction of sensitive information. This issue is fixed in iPadOS 17.7.4, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3. An app may be able to fingerprint the user.

5.5CVSS5.5AI score0.00022EPSS

CVE•added 2025/07/30 12:15 a.m.•46 views

CVE-2025-43227

This issue was addressed through improved state management. This issue is fixed in Safari 18.6, iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6, watchOS 11.6, visionOS 2.6. Processing maliciously crafted web content may disclose sensitive user information.

7.5CVSS5.3AI score0.00073EPSS

CVE•added 2025/05/12 10:15 p.m.•45 views

CVE-2025-31222

A correctness issue was addressed with improved checks. This issue is fixed in watchOS 11.5, macOS Sonoma 14.7.6, tvOS 18.5, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, macOS Ventura 13.7.6. A user may be able to elevate privileges.

7.8CVSS5.6AI score0.00015EPSS

CVE•added 2025/07/30 12:15 a.m.•45 views

CVE-2025-43265

An out-of-bounds read was addressed with improved input validation. This issue is fixed in Safari 18.6, watchOS 11.6, visionOS 2.6, iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6. Processing maliciously crafted web content may disclose internal states of the app.

4CVSS5.3AI score0.00016EPSS

CVE•added 2025/03/10 7:15 p.m.•44 views

CVE-2024-44179

This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 17.7 and iPadOS 17.7, iOS 18 and iPadOS 18, macOS Sequoia 15. An attacker with physical access to a device may be able to read contact numbers from the lock screen.

2.4CVSS5.3AI score0.00026EPSS

CVE•added 2025/01/27 10:15 p.m.•44 views

CVE-2024-54499

A use-after-free issue was addressed with improved memory management. This issue is fixed in visionOS 2.2, tvOS 18.2, watchOS 11.2, iOS 18.2 and iPadOS 18.2, macOS Sequoia 15.2. Processing a maliciously crafted image may lead to arbitrary code execution.

8.8CVSS7.1AI score0.00108EPSS

CVE•added 2025/05/12 10:15 p.m.•44 views

CVE-2025-31217

The issue was addressed with improved input validation. This issue is fixed in watchOS 11.5, tvOS 18.5, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, Safari 18.5. Processing maliciously crafted web content may lead to an unexpected Safari crash.

6.5CVSS5.8AI score0.00143EPSS

CVE•added 2025/05/12 10:15 p.m.•44 views

CVE-2025-31245

The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.7.6, tvOS 18.5, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, macOS Ventura 13.7.6. An app may be able to cause unexpected system termination.

5.5CVSS5.6AI score0.00016EPSS

CVE•added 2025/03/10 8:15 p.m.•43 views

CVE-2022-43454

A double free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13.1, watchOS 9.2, iOS 16.2 and iPadOS 16.2, tvOS 16.2. An app may be able to execute arbitrary code with kernel privileges.

7.8CVSS7.3AI score0.00023EPSS

CVE•added 2025/01/27 10:15 p.m.•43 views

CVE-2024-54488

A logic issue was addressed with improved file handling. This issue is fixed in macOS Ventura 13.7.2, iOS 18.2 and iPadOS 18.2, iPadOS 17.7.3, macOS Sonoma 14.7.2, macOS Sequoia 15.2. Photos in the Hidden Photos Album may be viewed without authentication.

5.3CVSS5.8AI score0.00172EPSS

CVE•added 2025/03/10 7:15 p.m.•43 views

CVE-2024-54558

A clickjacking issue was addressed with improved out-of-process view handling. This issue is fixed in iOS 18 and iPadOS 18, macOS Sequoia 15. An app may be able to trick a user into granting access to photos from the user's photo library.

2.8CVSS5.4AI score0.00011EPSS

CVE•added 2025/05/12 10:15 p.m.•43 views

CVE-2025-24111

A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15.3, visionOS 2.3, iPadOS 17.7.7, watchOS 11.3, macOS Sonoma 14.7.5, iOS 18.3 and iPadOS 18.3, tvOS 18.3, macOS Ventura 13.7.5. An app may be able to cause unexpected system termination.

5.5CVSS5.9AI score0.00012EPSS

CVE•added 2025/05/12 10:15 p.m.•43 views

CVE-2025-31234

The issue was addressed with improved input sanitization. This issue is fixed in visionOS 2.5, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, tvOS 18.5. An attacker may be able to cause unexpected system termination or corrupt kernel memory.

8.2CVSS5.7AI score0.00066EPSS

CVE•added 2025/07/30 12:15 a.m.•43 views

CVE-2025-31278

The issue was addressed with improved memory handling. This issue is fixed in Safari 18.6, iPadOS 17.7.9, watchOS 11.6, visionOS 2.6, iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6. Processing maliciously crafted web content may lead to memory corruption.

8.8CVSS5.4AI score0.0005EPSS

CVE•added 2025/07/30 12:15 a.m.•42 views

CVE-2025-31273

The issue was addressed with improved memory handling. This issue is fixed in Safari 18.6, macOS Sequoia 15.6, iOS 18.6 and iPadOS 18.6, tvOS 18.6, watchOS 11.6, visionOS 2.6. Processing maliciously crafted web content may lead to memory corruption.

8.8CVSS5.4AI score0.0005EPSS

CVE•added 2025/07/30 12:15 a.m.•42 views

CVE-2025-43212

6.5CVSS5.4AI score0.00046EPSS

CVE•added 2025/07/30 12:15 a.m.•42 views

CVE-2025-43216

A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 18.6, watchOS 11.6, iOS 18.6 and iPadOS 18.6, iPadOS 17.7.9, tvOS 18.6, macOS Sequoia 15.6, visionOS 2.6. Processing maliciously crafted web content may lead to an unexpected Safari crash.

6.5CVSS5.5AI score0.00046EPSS

CVE•added 2025/03/10 7:15 p.m.•41 views

CVE-2024-54469

The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7, macOS Sequoia 15, macOS Sonoma 14.7, visionOS 2, iOS 18 and iPadOS 18. A local user may be able to leak sensitive user information.

5.5CVSS5.2AI score0.00019EPSS

CVE•added 2025/05/12 10:15 p.m.•41 views

CVE-2025-31212

This issue was addressed through improved state management. This issue is fixed in watchOS 11.5, tvOS 18.5, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5. An app may be able to access sensitive user data.

5.5CVSS5.7AI score0.00015EPSS

CVE•added 2025/05/12 10:15 p.m.•41 views

CVE-2025-31227

A logic issue was addressed with improved checks. This issue is fixed in iOS 18.5 and iPadOS 18.5. An attacker with physical access to a device may be able to access a deleted call recording.

4.6CVSS5.2AI score0.00024EPSS

CVE•added 2025/07/30 12:15 a.m.•41 views

CVE-2025-43211

The issue was addressed with improved memory handling. This issue is fixed in Safari 18.6, macOS Sequoia 15.6, iPadOS 17.7.9, iOS 18.6 and iPadOS 18.6, tvOS 18.6, watchOS 11.6, visionOS 2.6. Processing web content may lead to a denial-of-service.

6.2CVSS5.3AI score0.00017EPSS

CVE•added 2025/03/10 7:15 p.m.•40 views

CVE-2024-44227

The issue was addressed with improved memory handling. This issue is fixed in iOS 18 and iPadOS 18, macOS Sequoia 15. An app may be able to cause unexpected system termination or corrupt kernel memory.

7.5CVSS5.7AI score0.00045EPSS

CVE•added 2025/01/27 10:15 p.m.•40 views

CVE-2024-54512

The issue was addressed by removing the relevant flags. This issue is fixed in watchOS 11.2, iOS 18.2 and iPadOS 18.2. A system binary could be used to fingerprint a user's Apple Account.

9.1CVSS5.8AI score0.00065EPSS

CVE•added 2025/01/27 10:15 p.m.•39 views

CVE-2024-54518

The issue was addressed with improved bounds checks. This issue is fixed in macOS Sequoia 15.2, watchOS 11.2, tvOS 18.2, iOS 18.2 and iPadOS 18.2. An app may be able to corrupt coprocessor memory.

5.3CVSS5.7AI score0.00027EPSS

CVE•added 2025/01/27 10:15 p.m.•39 views

CVE-2024-54522

The issue was addressed with improved bounds checks. This issue is fixed in macOS Sequoia 15.2, watchOS 11.2, tvOS 18.2, iOS 18.2 and iPadOS 18.2. An app may be able to corrupt coprocessor memory.

7.8CVSS5.7AI score0.0004EPSS

CVE•added 2025/07/30 12:15 a.m.•39 views

CVE-2025-43228

The issue was addressed with improved UI. This issue is fixed in iOS 18.6 and iPadOS 18.6, Safari 18. 6. Visiting a malicious website may lead to address bar spoofing.

4.3CVSS5.4AI score0.00027EPSS

CVE•added 2025/01/27 10:15 p.m.•38 views

CVE-2024-54541

This issue was addressed through improved state management. This issue is fixed in macOS Ventura 13.7.2, visionOS 2.2, tvOS 18.2, watchOS 11.2, iOS 18.2 and iPadOS 18.2, macOS Sonoma 14.7.2, macOS Sequoia 15.2. An app may be able to access user-sensitive data.

5.5CVSS5.9AI score0.0003EPSS

CVE•added 2025/03/10 7:15 p.m.•38 views

CVE-2024-54560

A logic issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18, watchOS 11, tvOS 18, macOS Sequoia 15. A malicious app may be able to modify other apps without having App Management permission.

5.5CVSS5.6AI score0.0002EPSS

CVE•added 2025/05/12 10:15 p.m.•38 views

CVE-2025-31209

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in watchOS 11.5, macOS Sonoma 14.7.6, tvOS 18.5, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, macOS Ventura 13.7.6. Parsing a file may lead to disclosure of user information.

6.3CVSS5.6AI score0.0006EPSS

CVE•added 2025/05/12 10:15 p.m.•38 views

CVE-2025-31225

A privacy issue was addressed by removing sensitive data. This issue is fixed in iOS 18.5 and iPadOS 18.5. Call history from deleted apps may still appear in spotlight search results.

7.1CVSS6.1AI score0.00048EPSS

CVE•added 2025/05/12 10:15 p.m.•37 views

CVE-2025-24225

An injection issue was addressed with improved input validation. This issue is fixed in iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5. Processing an email may lead to user interface spoofing.

6.5CVSS6.2AI score0.00037EPSS

CVE•added 2025/05/12 10:15 p.m.•37 views

CVE-2025-31208

The issue was addressed with improved checks. This issue is fixed in watchOS 11.5, macOS Sonoma 14.7.6, tvOS 18.5, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, macOS Ventura 13.7.6. Parsing a file may lead to an unexpected app termination.

7.5CVSS5.7AI score0.00183EPSS

CVE•added 2025/05/12 10:15 p.m.•35 views

CVE-2025-24220

A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 18.4 and iPadOS 18.4. An app may be able to read a persistent device identifier.

5.5CVSS5.3AI score0.00018EPSS

CVE•added 2025/05/12 10:15 p.m.•35 views

CVE-2025-31210

The issue was addressed with improved UI. This issue is fixed in iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5. Processing web content may lead to a denial-of-service.

6.5CVSS5.9AI score0.00043EPSS

CVE•added 2025/05/12 10:15 p.m.•35 views

CVE-2025-31226

A logic issue was addressed with improved checks. This issue is fixed in watchOS 11.5, tvOS 18.5, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5. Processing a maliciously crafted image may lead to a denial-of-service.

5.5CVSS5.7AI score0.00015EPSS

CVE•added 2025/05/12 10:15 p.m.•33 views

CVE-2025-31207

A logic issue was addressed with improved checks. This issue is fixed in iOS 18.5 and iPadOS 18.5. An app may be able to enumerate a user's installed apps.

7.7CVSS5.8AI score0.0002EPSS

CVE•added 2025/07/30 12:15 a.m.•24 views

CVE-2025-43186

The issue was addressed with improved memory handling. This issue is fixed in watchOS 11.6, iOS 18.6 and iPadOS 18.6, tvOS 18.6, macOS Sequoia 15.6, macOS Sonoma 14.7.7, visionOS 2.6, macOS Ventura 13.7.7. Parsing a file may lead to an unexpected app termination.

9.8CVSS5.7AI score0.00092EPSS

CVE•added 2025/05/19 4:15 p.m.•23 views

CVE-2025-24184

The issue was addressed with improved memory handling. This issue is fixed in visionOS 2.3, iOS 18.3 and iPadOS 18.3, iPadOS 17.7.4, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. An app may be able to cause unexpected system termination.

5.5CVSS5.3AI score0.0001EPSS

CVE•added 2025/05/19 4:15 p.m.•22 views

CVE-2025-31185

A logic issue was addressed with improved checks. This issue is fixed in iOS 18.3 and iPadOS 18.3. Photos in the Hidden Photos Album may be viewed without authentication.

3.3CVSS5.5AI score0.0002EPSS

CVE•added 2025/05/19 4:15 p.m.•20 views

CVE-2025-31262

A permissions issue was addressed with additional restrictions. This issue is fixed in visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. An app may be able to modify protected parts of the file system.

5.5CVSS5.3AI score0.00008EPSS

CVE•added 2025/07/30 12:15 a.m.•14 views

CVE-2025-31277

The issue was addressed with improved memory handling. This issue is fixed in Safari 18.6, watchOS 11.6, visionOS 2.6, iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, tvOS 18.6. Processing maliciously crafted web content may lead to memory corruption.

8.8CVSS5.4AI score0.0005EPSS

CVE•added 2025/07/30 12:15 a.m.•11 views

CVE-2025-43209

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in macOS Sequoia 15.6, iPadOS 17.7.9, iOS 18.6 and iPadOS 18.6, tvOS 18.6, macOS Sonoma 14.7.7, watchOS 11.6, visionOS 2.6, macOS Ventura 13.7.7. Processing maliciously crafted web content may lead to an ...

9.8CVSS5.8AI score0.00084EPSS

CVE•added 2025/07/30 12:15 a.m.•11 views

CVE-2025-43221

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in macOS Sequoia 15.6, iOS 18.6 and iPadOS 18.6, visionOS 2.6, tvOS 18.6. Processing a maliciously crafted media file may lead to unexpected app termination or corrupt process memory.

7.1CVSS5.8AI score0.00013EPSS

CVE•added 2025/07/30 12:15 a.m.•11 views

CVE-2025-43226

An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 11.6, iOS 18.6 and iPadOS 18.6, iPadOS 17.7.9, tvOS 18.6, macOS Sequoia 15.6, macOS Sonoma 14.7.7, visionOS 2.6. Processing a maliciously crafted image may result in disclosure of process memory.

4CVSS5.7AI score0.00016EPSS

CVE•added 2025/07/30 12:15 a.m.•11 views

CVE-2025-43277

The issue was addressed with improved memory handling. This issue is fixed in iOS 18.6 and iPadOS 18.6, watchOS 11.6, macOS Sequoia 15.6, tvOS 18.6, visionOS 2.6. Processing a maliciously crafted audio file may lead to memory corruption.

7.8CVSS5.8AI score0.00015EPSS

CVE•added 2025/07/30 12:15 a.m.•10 views

CVE-2025-31281

An input validation issue was addressed with improved memory handling. This issue is fixed in visionOS 2.6, tvOS 18.6, macOS Sequoia 15.6, iOS 18.6 and iPadOS 18.6. Processing a maliciously crafted file may lead to unexpected app termination.

9.1CVSS5.8AI score0.00162EPSS

Total number of security vulnerabilities210