Iphone Os

iphone_os

Vendor: Apple • 4,015 CVEs

CVEs (4,015)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2019-8511 1Apple 3Iphone Os Mac Os XWatchos Nov 21, 2024 Dec 18, 2019 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, watchOS 5.2. A malicious application may be able to elevate privileges.
CVE-2019-8510 1Apple 4Iphone Os Mac Os XTvos+1 more Nov 21, 2024 Dec 18, 2019 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicio...Show more An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to determine kernel memory layout.Show less
CVE-2019-8506 2Apple Redhat 9Enterprise Linux Desktop Enterprise Linux ServerEnterprise Linux Workstation+6 more Oct 23, 2025 Dec 18, 2019 N/A· v4 8.8 HIGH· v3 9.3 HIGH· v2 A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted...Show more A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.Show less
CVE-2019-8505 1Apple 2Iphone Os Safari Nov 21, 2024 Dec 18, 2019 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, Safari 12.1. Enabling the Safari Reader feature on a maliciously crafted webpage may lead to universal cross site scripting.
CVE-2019-8504 1Apple 2Iphone Os Mac Os X Nov 21, 2024 Dec 18, 2019 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4. A local user may be able to read kernel memory.
CVE-2019-8503 1Apple 5Icloud Iphone OsItunes+2 more Nov 21, 2024 Dec 18, 2019 N/A· v4 8.8 HIGH· v3 9.3 HIGH· v2 A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. A malicious website may be able to execute scripts in the...Show more A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. A malicious website may be able to execute scripts in the context of another website.Show less
CVE-2019-8502 1Apple 4Iphone Os Mac Os XTvos+1 more Nov 21, 2024 Dec 18, 2019 N/A· v4 3.3 LOW· v3 4.3 MEDIUM· v2 An API issue existed in the handling of dictation requests. This issue was addressed with improved validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be...Show more An API issue existed in the handling of dictation requests. This issue was addressed with improved validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to initiate a Dictation request without user authorization.Show less
CVE-2019-7293 1Apple 4Iphone Os Mac Os XTvos+1 more Nov 21, 2024 Dec 18, 2019 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A local user may be able to read kernel memory.
CVE-2019-7292 1Apple 6Icloud Iphone OsItunes+3 more Nov 21, 2024 Dec 18, 2019 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 A validation issue was addressed with improved logic. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content m...Show more A validation issue was addressed with improved logic. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may result in the disclosure of process memory.Show less
CVE-2019-7287 1Apple 1Iphone Os Oct 23, 2025 Dec 18, 2019 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.1.4. An application may be able to execute arbitrary code with kernel privileges.
CVE-2019-7286 1Apple 2Iphone Os Mac Os X Oct 23, 2025 Dec 18, 2019 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.1.4, macOS Mojave 10.14.3 Supplemental Update. An application may be able to gain elevated privileges.
CVE-2019-7285 1Apple 5Icloud Iphone OsItunes+2 more Nov 21, 2024 Dec 18, 2019 N/A· v4 8.8 HIGH· v3 9.3 HIGH· v2 A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web conten...Show more A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.Show less
CVE-2019-7284 1Apple 1Iphone Os Nov 21, 2024 Dec 18, 2019 N/A· v4 4.3 MEDIUM· v3 4.3 MEDIUM· v2 This issue was addressed with improved checks. This issue is fixed in iOS 12.2. Processing a maliciously crafted mail message may lead to S/MIME signature spoofing.
CVE-2019-6237 1Apple 6Icloud Iphone OsItunes+3 more Nov 21, 2024 Dec 18, 2019 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Process...Show more Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution.Show less
CVE-2019-6222 1Apple 1Iphone Os Nov 21, 2024 Dec 18, 2019 N/A· v4 4.3 MEDIUM· v3 4.3 MEDIUM· v2 A consistency issue was addressed with improved state handling. This issue is fixed in iOS 12.2. A website may be able to access the microphone without the microphone use indicator being shown.
CVE-2019-6207 1Apple 4Iphone Os Mac Os XTvos+1 more Nov 21, 2024 Dec 18, 2019 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicio...Show more An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to determine kernel memory layout.Show less
CVE-2019-6204 1Apple 2Iphone Os Safari Nov 21, 2024 Dec 18, 2019 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, Safari 12.1. Enabling the Safari Reader feature on a maliciously crafted webpage may lead to universal cross site scripting.
CVE-2019-6201 1Apple 5Icloud Iphone OsItunes+2 more Nov 21, 2024 Dec 18, 2019 N/A· v4 8.8 HIGH· v3 9.3 HIGH· v2 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted...Show more Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.Show less
CVE-2019-14899 4Apple FreebsdLinux+1 more 8Freebsd IpadosIphone Os+5 more Nov 21, 2024 Dec 11, 2019 N/A· v4 7.4 HIGH· v3 4.9 MEDIUM· v2 A vulnerability was discovered in Linux, FreeBSD, OpenBSD, MacOS, iOS, and Android that allows a malicious access point, or an adjacent user, to determine if a connected user is using a VPN, make positive inferences abou...Show more A vulnerability was discovered in Linux, FreeBSD, OpenBSD, MacOS, iOS, and Android that allows a malicious access point, or an adjacent user, to determine if a connected user is using a VPN, make positive inferences about the websites they are visiting, and determine the correct sequence and acknowledgement numbers in use, allowing the bad actor to inject data into the TCP stream. This provides everything that is needed for an attacker to hijack active connections inside the VPN tunnel.Show less
CVE-2019-15165 7Apple CanonicalDebian+4 more 11Communications Operations Monitor Debian LinuxFedora+8 more Dec 3, 2025 Oct 3, 2019 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 sf-pcapng.c in libpcap before 1.9.1 does not properly validate the PHB header length before allocating memory.

Previous 1...109110111...201 Next