Apple » Iphone Os : Security Vulnerabilities (CVSS score between 7 and 7.99)

CVSS Scores Greater Than: 0 1 2 3 4 5 6 7 8 9

Sort Results By : Cve Number Descending Cve Number Ascending CVSS Score Descending Number Of Exploits Descending

Copy Results Download Results Select Table

#	CVE ID	CWE ID	# of Exploits	Vulnerability Type(s)	Publish Date	Update Date	Score	Gained Access Level	Access	Complexity	Authentication	Conf.	Integ.	Avail.
1	CVE-2013-4616	255			2013-06-18	2013-06-18	7.5	User	Remote	Low	Not required	Partial	Partial	Partial
The WifiPasswordController generateDefaultPassword method in Preferences in Apple iOS 6 and earlier relies on the UITextChecker suggestWordInLanguage method for selection of Wi-Fi hotspot WPA2 PSK passphrases, which makes it easier for remote attackers to obtain access via a brute-force attack that leverages the insufficient number of possible passphrases.
2	CVE-2013-0981			+Priv	2013-03-20	2013-03-21	7.2	None	Local	Low	Not required	Complete	Complete	Complete
The IOUSBDeviceFamily driver in the USB implementation in the kernel in Apple iOS before 6.1.3 and Apple TV before 5.2.1 accesses pipe object pointers that originated in userspace, which allows local users to gain privileges via crafted code.
3	CVE-2012-2824	399		DoS	2012-06-27	2013-03-15	7.5	None	Remote	Low	Not required	Partial	Partial	Partial
Use-after-free vulnerability in Google Chrome before 20.0.1132.43 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to SVG painting.
4	CVE-2012-2619	20		DoS	2012-11-14	2013-02-05	7.8	None	Remote	Low	Not required	None	None	Complete
The Broadcom BCM4325 and BCM4329 Wi-Fi chips, as used in certain Acer, Apple, Asus, Ford, HTC, Kyocera, LG, Malata, Motorola, Nokia, Pantech, Samsung, and Sony products, allow remote attackers to cause a denial of service (out-of-bounds read and Wi-Fi outage) via an RSN 802.11i information element.
5	CVE-2011-3442	399		Exec Code	2011-11-11	2012-02-14	7.2	None	Local	Low	Not required	Complete	Complete	Complete
The kernel in Apple iOS before 5.0.1 does not ensure the validity of flag combinations for an mmap system call, which allows local users to execute arbitrary unsigned code via a crafted app.
6	CVE-2011-0228	20			2011-08-29	2011-09-21	7.5	None	Remote	Low	Not required	Partial	Partial	Partial
The Data Security component in Apple iOS before 4.2.10 and 4.3.x before 4.3.5 does not check the basicConstraints parameter during validation of X.509 certificate chains, which allows man-in-the-middle attackers to spoof an SSL server by using a non-CA certificate to sign a certificate for an arbitrary domain.
7	CVE-2011-0227	264		+Priv	2011-07-19	2011-07-26	7.2	None	Local	Low	Not required	Complete	Complete	Complete
The queueing primitives in IOMobileFrameBuffer in Apple iOS before 4.2.9 and 4.3.x before 4.3.4 do not properly perform type conversion, which allows local users to gain privileges via a crafted application.
8	CVE-2011-0162	20		DoS	2011-03-11	2011-03-30	7.8	None	Remote	Low	Not required	None	None	Complete
Wi-Fi in Apple iOS before 4.3 and Apple TV before 4.2 does not properly perform bounds checking for Wi-Fi frames, which allows remote attackers to cause a denial of service (device reset) via unspecified traffic on the local wireless network.
9	CVE-2011-0157	119		DoS Exec Code Overflow Mem. Corr.	2011-03-11	2011-03-30	7.5	None	Remote	Low	Not required	Partial	Partial	Partial
WebKit, as used in Apple iOS before 4.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed in APPLE-SA-2011-03-09-1.
10	CVE-2011-0154	119		DoS Exec Code Overflow Mem. Corr.	2011-03-03	2012-03-30	7.6	None	Remote	High	Not required	Complete	Complete	Complete
WebKit, as used in Apple iTunes before 10.2 on Windows and Apple iOS, does not properly implement the .sort function for JavaScript arrays, which allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other CVEs listed in APPLE-SA-2011-03-02-1.
11	CVE-2010-3830	264		+Priv	2010-11-26	2010-12-10	7.2	None	Local	Low	Not required	Complete	Complete	Complete
Networking in Apple iOS before 4.2 accesses an invalid pointer during the processing of packet filter rules, which allows local users to gain privileges via unspecified vectors.
12	CVE-2009-3273	310			2009-09-21	2009-09-22	7.5	None	Remote	Low	Not required	Partial	Partial	Partial
iPhone Mail in Apple iPhone OS, and iPhone OS for iPod touch, does not validate X.509 certificates, which allows man-in-the-middle attackers to spoof arbitrary SSL e-mail servers via a crafted certificate.
13	CVE-2009-2815	399		DoS	2009-09-10	2009-09-24	7.8	None	Remote	Low	Not required	None	None	Complete
The Telephony component in Apple iPhone OS before 3.1 does not properly handle SMS arrival notifications, which allows remote attackers to cause a denial of service (NULL pointer dereference and service interruption) via a crafted SMS message.
14	CVE-2009-2795	119		Overflow Bypass	2009-09-10	2012-10-22	7.2	None	Local	Low	Not required	Complete	Complete	Complete
Heap-based buffer overflow in the Recovery Mode component in Apple iPhone OS before 3.1, and iPhone OS before 3.1.1 for iPod touch, allows local users to bypass the passcode requirement and access arbitrary data via vectors related to "command parsing."
15	CVE-2009-1699	200	1	+Info	2009-06-10	2012-03-30	7.1	None	Remote	Medium	Not required	Complete	None	None
The XSL stylesheet implementation in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle XML external entities, which allows remote attackers to read arbitrary files via a crafted DTD, as demonstrated by a file:///etc/passwd URL in an entity declaration, related to an "XXE attack."
16	CVE-2009-1692	399	1	DoS	2009-06-19	2012-03-30	7.1	None	Remote	Medium	Not required	None	None	Complete
WebKit before r41741, as used in Apple iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Safari, and other software, allows remote attackers to cause a denial of service (memory consumption or device reset) via a web page containing an HTMLSelectElement object with a large length attribute, related to the length property of a Select object.
17	CVE-2009-1683			DoS	2009-06-19	2012-03-30	7.8	None	Remote	Low	Not required	None	None	Complete
The Telephony component in Apple iPhone OS 1.0 through 2.2.1 and iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to cause a denial of service (device reset) via a crafted ICMP echo request, which triggers an assertion error related to a "logic issue."
18	CVE-2009-0959	20		DoS	2009-06-19	2012-03-30	7.1	None	Remote	Medium	Not required	None	None	Complete
The MPEG-4 video codec in Apple iPhone OS 1.0 through 2.2.1 and iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to cause a denial of service (device reset) via a crafted MPEG-4 video file that triggers an "input validation issue."
19	CVE-2008-4227	310		+Info	2008-11-25	2011-09-20	7.5	None	Remote	Low	Not required	Partial	Partial	Partial
Apple iPhone OS 1.0 through 2.1 and iPhone OS for iPod touch 1.1 through 2.1 changes the encryption level of PPTP VPN connections to a lower level than was previously used, which makes it easier for remote attackers to obtain sensitive information or hijack a connection by decrypting network traffic.
20	CVE-2008-1586	399		DoS	2008-11-25	2009-02-20	7.1	None	Remote	Medium	Not required	None	None	Complete
ImageIO in Apple iPhone OS 1.0 through 2.1 and iPhone OS for iPod touch 1.1 through 2.1 allow remote attackers to cause a denial of service (memory consumption and device reset) via a crafted TIFF image.

Total number of vulnerabilities : 20 Page : 1 (This Page)