Iphone Os Security Vulnerabilities and Issues — Iphone Os CVE List

Lucene search

AppleIphone Os

23 matches found

CVE•added 2019/01/11 6:29 p.m.•159 views

CVE-2018-4278

In Safari before 11.1.2, iTunes before 12.8 for Windows, iOS before 11.4.1, tvOS before 11.4.1, iCloud for Windows before 7.6, sound fetched through audio elements may be exfiltrated cross-origin. This issue was addressed with improved audio taint tracking.

4.3CVSS5.5AI score0.00328EPSS

CVE•added 2019/01/11 6:29 p.m.•151 views

CVE-2018-4212

In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks.

8.8CVSS7.5AI score0.00846EPSS

CVE•added 2019/01/11 6:29 p.m.•149 views

CVE-2018-4208

8.8CVSS7.5AI score0.00846EPSS

CVE•added 2019/01/11 6:29 p.m.•144 views

CVE-2018-4207

8.8CVSS7.5AI score0.00846EPSS

CVE•added 2019/01/11 6:29 p.m.•144 views

CVE-2018-4262

In Safari before 11.1.2, iTunes before 12.8 for Windows, iOS before 11.4.1, tvOS before 11.4.1, iCloud for Windows before 7.6, multiple memory corruption issues were addressed with improved memory handling.

8.8CVSS8.2AI score0.00378EPSS

CVE•added 2019/01/11 6:29 p.m.•142 views

CVE-2018-4209

8.8CVSS7.5AI score0.00624EPSS

CVE•added 2019/01/11 6:29 p.m.•141 views

CVE-2018-4210

In iOS before 11.3, Safari before 11.1, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, an array indexing issue existed in the handling of a function in javascript core. This issue was addressed with improved checks.

8.8CVSS7.3AI score0.00876EPSS

CVE•added 2019/01/11 6:29 p.m.•140 views

CVE-2018-4404

In iOS before 11.4 and macOS High Sierra before 10.13.5, a memory corruption issue exists and was addressed with improved memory handling.

9.3CVSS6.6AI score0.70102EPSS

CVE•added 2019/01/11 6:29 p.m.•135 views

CVE-2018-4213

8.8CVSS7.5AI score0.00876EPSS

CVE•added 2019/01/11 6:29 p.m.•91 views

CVE-2018-4194

In iOS before 11.4, iCloud for Windows before 7.5, watchOS before 4.3.1, iTunes before 12.7.5 for Windows, and macOS High Sierra before 10.13.5, an out-of-bounds read was addressed with improved input validation.

8.8CVSS6.7AI score0.00536EPSS

CVE•added 2019/01/11 6:29 p.m.•77 views

CVE-2018-4185

In iOS before 11.3, tvOS before 11.3, watchOS before 4.3, and macOS before High Sierra 10.13.4, an information disclosure issue existed in the transition of program state. This issue was addressed with improved state handling.

7.5CVSS7.1AI score0.03952EPSS

CVE•added 2019/01/11 6:29 p.m.•74 views

CVE-2018-4277

In iOS before 11.4.1, watchOS before 4.3.2, tvOS before 11.4.1, Safari before 11.1.1, macOS High Sierra before 10.13.6, a spoofing issue existed in the handling of URLs. This issue was addressed with improved input validation.

7.5CVSS5.7AI score0.00562EPSS

CVE•added 2019/01/11 6:29 p.m.•64 views

CVE-2017-13888

In iOS before 11.2, a type confusion issue was addressed with improved memory handling.

7.5CVSS6.9AI score0.00241EPSS

CVE•added 2019/01/11 6:29 p.m.•62 views

CVE-2018-4189

In iOS before 11.2.5, macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, watchOS before 4.2.2, and tvOS before 11.2.5, a memory corruption issue exists and was addressed with improved memory handling.

10CVSS8.6AI score0.00757EPSS

CVE•added 2019/01/11 6:29 p.m.•61 views

CVE-2018-4330

In iOS before 11.4, a memory corruption issue exists and was addressed with improved memory handling.

9.3CVSS7.3AI score0.16005EPSS

CVE•added 2019/01/11 6:29 p.m.•59 views

CVE-2016-4643

In iOS before 9.3.3, tvOS before 9.2.2, and OS X El Capitan before v10.11.6 and Security Update 2016-004, a validation issue existed in the parsing of 407 responses. This issue was addressed through improved response validation.

6.5CVSS7.1AI score0.00371EPSS

CVE•added 2019/01/11 6:29 p.m.•59 views

CVE-2017-2411

In iOS before 11.2, exchange rates were retrieved from HTTP rather than HTTPS. This was addressed by enabling HTTPS for exchange rates.

5.9CVSS6.3AI score0.00322EPSS

CVE•added 2019/01/11 6:29 p.m.•58 views

CVE-2016-4642

In iOS before 9.3.3, tvOS before 9.2.2, and OS X El Capitan before v10.11.6 and Security Update 2016-004, proxy authentication incorrectly reported HTTP proxies received credentials securely. This issue was addressed through improved warnings.

5.9CVSS6.9AI score0.00361EPSS

CVE•added 2019/01/11 6:29 p.m.•58 views

CVE-2017-13891

In iOS before 11.2, an inconsistent user interface issue was addressed through improved state management.

6.5CVSS6.4AI score0.00255EPSS

CVE•added 2019/01/11 6:29 p.m.•58 views

CVE-2018-4298

In macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, a permissions issue existed in Remote Management. This issue was addressed through improved permission validation.

10CVSS8.8AI score0.00334EPSS

CVE•added 2019/01/11 6:29 p.m.•46 views

CVE-2016-4644

In iOS before 9.3.3, tvOS before 9.2.2, and OS X El Capitan before v10.11.6 and Security Update 2016-004, a downgrade issue existed with HTTP authentication credentials saved in Keychain. This issue was addressed by storing the authentication types with the credentials.

6.5CVSS7.4AI score0.00453EPSS

CVE•added 2019/01/11 6:29 p.m.•43 views

CVE-2016-7576

In iOS before 9.3.3, a memory corruption issue existed in the kernel. This issue was addressed through improved memory handling.

9.3CVSS8.2AI score0.00171EPSS

CVE•added 2019/01/11 6:29 p.m.•41 views

CVE-2018-4147

In iCloud for Windows before 7.3, Safari before 11.0.3, iTunes before 12.7.3 for Windows, and iOS before 11.2.5, multiple memory corruption issues exist and were addressed with improved memory handling.

9.8CVSS9AI score0.00785EPSS