Iphone Os Security Vulnerabilities and Issues — Iphone Os CVE List

Lucene search

AppleIphone Os

51 matches found

CVE•added 2017/10/23 1:29 a.m.•105 views

CVE-2017-7089

An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. The issue involves the "WebKit" component. It allows remote attackers to conduct Universal XSS (UXSS) attacks via a crafted web site that is mishandl...

6.1CVSS5.4AI score0.04871EPSS

CVE•added 2017/10/23 1:29 a.m.•92 views

CVE-2017-7107

An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the "WebKit" component. It allows remote attackers to execu...

8.8CVSS7.7AI score0.00513EPSS

CVE•added 2017/10/23 1:29 a.m.•92 views

CVE-2017-7109

6.1CVSS5.4AI score0.00723EPSS

CVE•added 2017/10/23 1:29 a.m.•92 views

CVE-2017-7117

8.8CVSS7.7AI score0.05627EPSS

CVE•added 2017/10/23 1:29 a.m.•91 views

CVE-2017-7111

8.8CVSS7.7AI score0.00513EPSS

CVE•added 2017/10/23 1:29 a.m.•89 views

CVE-2017-7093

8.8CVSS7.7AI score0.00513EPSS

CVE•added 2017/10/23 1:29 a.m.•89 views

CVE-2017-7102

8.8CVSS7.7AI score0.00513EPSS

CVE•added 2017/10/23 1:29 a.m.•86 views

CVE-2017-7087

8.8CVSS7.7AI score0.00513EPSS

CVE•added 2017/10/23 1:29 a.m.•86 views

CVE-2017-7100

8.8CVSS7.7AI score0.00513EPSS

CVE•added 2017/10/23 1:29 a.m.•84 views

CVE-2017-7098

8.8CVSS7.7AI score0.00513EPSS

CVE•added 2017/10/23 1:29 a.m.•83 views

CVE-2017-7092

8.8CVSS7.7AI score0.29833EPSS

CVE•added 2017/10/23 1:29 a.m.•83 views

CVE-2017-7104

8.8CVSS7.7AI score0.00513EPSS

CVE•added 2017/10/23 1:29 a.m.•82 views

CVE-2017-7081

8.8CVSS8AI score0.00513EPSS

CVE•added 2017/10/23 1:29 a.m.•82 views

CVE-2017-7099

8.8CVSS8AI score0.00513EPSS

CVE•added 2017/10/23 1:29 a.m.•82 views

CVE-2017-7120

8.8CVSS7.7AI score0.00513EPSS

CVE•added 2017/10/23 1:29 a.m.•81 views

CVE-2017-7090

7.5CVSS5.6AI score0.00613EPSS

CVE•added 2017/10/23 1:29 a.m.•80 views

CVE-2017-7094

8.8CVSS8AI score0.00513EPSS

CVE•added 2017/10/23 1:29 a.m.•80 views

CVE-2017-7095

8.8CVSS7.7AI score0.00513EPSS

CVE•added 2017/10/23 1:29 a.m.•79 views

CVE-2017-7115

An issue was discovered in certain Apple products. iOS before 11 is affected. tvOS before 11 is affected. The issue involves the "Wi-Fi" component. It might allow remote attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via crafted Wi-Fi tr...

9.3CVSS8.6AI score0.07984EPSS

CVE•added 2017/10/23 1:29 a.m.•78 views

CVE-2017-7096

8.8CVSS7.7AI score0.00513EPSS

CVE•added 2017/10/23 1:29 a.m.•77 views

CVE-2017-7083

An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "CFNetwork Proxies" component. It allows remote attackers to cause a denial of service.

4.9CVSS5.6AI score0.01772EPSS

CVE•added 2017/10/23 1:29 a.m.•77 views

CVE-2017-7091

8.8CVSS7.7AI score0.00513EPSS

CVE•added 2017/10/23 1:29 a.m.•77 views

CVE-2017-7144

An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. The issue involves the "WebKit" component. It allows remote attackers to track Safari Private Browsing users by leveraging cookie mishandling.

4.3CVSS5AI score0.00446EPSS

CVE•added 2017/10/23 1:29 a.m.•72 views

CVE-2017-7110

An issue was discovered in certain Apple products. iOS before 11 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "Wi-Fi" component. It might allow remote attackers to execute arbitrary code in a privileged context or cause a denial of service (memory co...

10CVSS8.9AI score0.10946EPSS

CVE•added 2017/10/23 1:29 a.m.•71 views

CVE-2017-7114

An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "Kernel" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial ...

9.3CVSS8.1AI score0.00183EPSS

CVE•added 2017/10/23 1:29 a.m.•70 views

CVE-2017-7103

9.8CVSS8.9AI score0.0493EPSS

CVE•added 2017/10/23 1:29 a.m.•69 views

CVE-2017-7108

10CVSS8.9AI score0.10946EPSS

CVE•added 2017/10/23 1:29 a.m.•69 views

CVE-2017-7116

An issue was discovered in certain Apple products. iOS before 11 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "Wi-Fi" component. It might allow remote attackers to read data from kernel memory locations via crafted Wi-Fi traffic.

7.5CVSS6.9AI score0.00782EPSS

CVE•added 2017/10/23 1:29 a.m.•69 views

CVE-2017-7133

An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "MobileBackup" component. It allows remote attackers to obtain sensitive cleartext information in opportunistic circumstances by leveraging read access to a backup archive that was supposed to have ...

7.5CVSS6.6AI score0.00342EPSS

CVE•added 2017/10/04 1:29 a.m.•68 views

CVE-2017-11122

On Broadcom BCM4355C0 Wi-Fi chips 9.44.78.27.0.1.56, an attacker can trigger an information leak due to insufficient length validation, related to ICMPv6 router advertisement offloading.

7.5CVSS8.3AI score0.01EPSS

CVE•added 2017/10/23 1:29 a.m.•68 views

CVE-2017-7086

An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "libc" component. It allows remote attackers to cause a denial of service (resource consumption) via a craft...

7.8CVSS6.9AI score0.04633EPSS

CVE•added 2017/10/23 1:29 a.m.•68 views

CVE-2017-7128

An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the third-party "SQLite" product. Versions before 3.19.3 allow remote attackers to cause a denial of service (ap...

9.8CVSS8.6AI score0.01729EPSS

CVE•added 2017/10/23 1:29 a.m.•68 views

CVE-2017-7130

An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the third-party "SQLite" product. Versions before 3.19.3 allow remote attackers to cause a denial of service (ap...

9.8CVSS8.6AI score0.01729EPSS

CVE•added 2017/10/23 1:29 a.m.•67 views

CVE-2017-7080

An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "Security" component. It allows remote attackers to bypass intended certificate-trust restrictions via a rev...

7.5CVSS6.9AI score0.00441EPSS

CVE•added 2017/10/23 1:29 a.m.•67 views

CVE-2017-7088

An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Exchange ActiveSync" component. It allows remote attackers to erase a device in opportunistic circumstances by hijacking a cleartext AutoDiscover V1 session during the setup of an Exchange account.

7.1CVSS6AI score0.01577EPSS

CVE•added 2017/10/23 1:29 a.m.•66 views

CVE-2017-7078

An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. The issue involves the "Mail Drafts" component. It allows remote attackers to obtain sensitive information by reading unintended cleartext transmissions.

5.3CVSS5.2AI score0.00208EPSS

CVE•added 2017/10/23 1:29 a.m.•66 views

CVE-2017-7105

10CVSS8.9AI score0.10946EPSS

CVE•added 2017/10/23 1:29 a.m.•66 views

CVE-2017-7106

6.5CVSS6.2AI score0.00693EPSS

CVE•added 2017/10/23 1:29 a.m.•63 views

CVE-2017-7072

An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "iBooks" component. It allows remote attackers to cause a denial of service (persistent outage) via a crafted iBooks file.

5.5CVSS5.7AI score0.00276EPSS

CVE•added 2017/10/23 1:29 a.m.•63 views

CVE-2017-7097

An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Mail MessageUI" component. It allows attackers to cause a denial of service (memory corruption) via a crafted image.

5.5CVSS5.6AI score0.0029EPSS

CVE•added 2017/10/23 1:29 a.m.•63 views

CVE-2017-7112

10CVSS8.9AI score0.10946EPSS

CVE•added 2017/10/23 1:29 a.m.•63 views

CVE-2017-7127

An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. iCloud before 7.0 on Windows is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "SQLite" component. It allows attackers to execute arbitrary code ...

9.3CVSS8.1AI score0.00172EPSS

CVE•added 2017/10/23 1:29 a.m.•62 views

CVE-2017-7085

An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. The issue involves the "Safari" component. It allows remote attackers to spoof the address bar.

6.5CVSS6.1AI score0.00765EPSS

CVE•added 2017/10/23 1:29 a.m.•62 views

CVE-2017-7131

An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Bluetooth" component. It allows attackers to obtain sensitive Contact card information via a crafted app.

5.5CVSS5.2AI score0.00197EPSS

CVE•added 2017/10/23 1:29 a.m.•60 views

CVE-2017-7129

An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the third-party "SQLite" product. Versions before 3.19.3 allow remote attackers to cause a denial of service (ap...

9.8CVSS8.6AI score0.01729EPSS

CVE•added 2017/10/23 1:29 a.m.•60 views

CVE-2017-7148

An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Location Framework" component. It allows attackers to obtain sensitive location information via a crafted app that reads the location variable.

4.3CVSS4.2AI score0.00167EPSS

CVE•added 2017/10/23 1:29 a.m.•59 views

CVE-2017-7139

An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Phone" component. It allows attackers to obtain sensitive information by leveraging a timing bug to read a secure-content screenshot that occurred during a locking action.

2.4CVSS4.2AI score0.00065EPSS

CVE•added 2017/10/23 1:29 a.m.•59 views

CVE-2017-7146

An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Security" component. It allows attackers to track users across installs via a crafted app that leverages Keychain data mishandling.

5.3CVSS5.4AI score0.00178EPSS

CVE•added 2017/10/23 1:29 a.m.•58 views

CVE-2017-7145

An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Time" component. The "Setting Time Zone" feature mishandles the possibility of using location data.

5.3CVSS5.7AI score0.00232EPSS

CVE•added 2017/10/23 1:29 a.m.•57 views

CVE-2017-7118

An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Messages" component. It allows remote attackers to cause a denial of service (crash) via a crafted image.

5.5CVSS5.7AI score0.00276EPSS

Total number of security vulnerabilities51