| # |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
|
1 |
CVE-2017-7066 |
119 |
|
DoS Overflow Mem. Corr. |
2018-04-03 |
2018-05-04 |
3.3 |
None |
Local Network |
Low |
Not required |
None |
None |
Partial |
|
An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. tvOS before 10.2.2 is affected. The issue involves the "Wi-Fi" component. It allows attackers to cause a denial of service (memory corruption on the Wi-Fi chip) by leveraging proximity for 802.11. |
|
2 |
CVE-2016-4686 |
264 |
|
|
2017-02-20 |
2017-07-28 |
3.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
None |
|
An issue was discovered in certain Apple products. iOS before 10.1 is affected. The issue involves the "Contacts" component, which does not prevent an app's Address Book access after access revocation. |
|
3 |
CVE-2016-4635 |
200 |
|
+Info |
2016-07-21 |
2017-08-31 |
3.5 |
None |
Remote |
Medium |
Single system |
Partial |
None |
None |
|
FaceTime in Apple iOS before 9.3.3 and OS X before 10.11.6 allows man-in-the-middle attackers to spoof relayed-call termination, and obtain sensitive audio information in opportunistic circumstances, via unspecified vectors. |
|
4 |
CVE-2016-1763 |
20 |
|
+Info |
2016-03-23 |
2016-12-02 |
3.5 |
None |
Remote |
Medium |
Single system |
Partial |
None |
None |
|
Messages in Apple iOS before 9.3 does not ensure that an auto-fill action applies to the intended message thread, which allows remote authenticated users to obtain sensitive information by providing a crafted sms: URL and reading a thread. |
|
5 |
CVE-2015-5869 |
20 |
|
|
2015-09-18 |
2016-12-21 |
3.3 |
None |
Local Network |
Low |
Not required |
None |
Partial |
None |
|
The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in Apple iOS before 9 allows remote attackers to reconfigure a hop-limit setting via a small hop_limit value in a Router Advertisement (RA) message. |
|
6 |
CVE-2015-3778 |
200 |
|
+Info |
2015-08-16 |
2016-12-23 |
3.3 |
None |
Local Network |
Low |
Not required |
Partial |
None |
None |
|
bootp in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to obtain potentially sensitive information about MAC addresses seen in previous Wi-Fi sessions by sniffing an 802.11 network for DNAv4 broadcast traffic. |
|
7 |
CVE-2014-4372 |
59 |
|
|
2014-09-18 |
2017-08-28 |
3.6 |
None |
Local |
Low |
Not required |
None |
Partial |
Partial |
|
syslogd in the syslog subsystem in Apple iOS before 8 and Apple TV before 7 allows local users to change the permissions of arbitrary files via a symlink attack on an unspecified file. |
|
8 |
CVE-2014-1353 |
264 |
|
Bypass |
2014-07-01 |
2017-01-06 |
3.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
None |
|
Lock Screen in Apple iOS before 7.1.2 does not properly manage the telephony state in Airplane Mode, which allows physically proximate attackers to bypass the lock protection mechanism, and access a certain foreground application, via unspecified vectors. |
|
9 |
CVE-2014-1351 |
264 |
|
Bypass |
2014-07-01 |
2017-01-06 |
3.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
None |
|
Siri in Apple iOS before 7.1.2 allows physically proximate attackers to bypass an intended lock-screen passcode requirement, and read a contact list, via a Siri request that refers to a contact ambiguously. |
|
10 |
CVE-2013-5164 |
362 |
|
Bypass |
2013-10-23 |
2013-10-24 |
3.3 |
None |
Local |
Medium |
Not required |
Partial |
Partial |
None |
|
Multiple race conditions in the Phone app in Apple iOS before 7.0.3 allow physically proximate attackers to bypass the locked state, and dial the telephone numbers in arbitrary Contacts entries, by visiting the Contacts pane. |
|
11 |
CVE-2013-5160 |
264 |
|
Bypass |
2013-09-27 |
2013-10-07 |
3.3 |
None |
Local |
Medium |
Not required |
Partial |
Partial |
None |
|
Passcode Lock in Apple iOS before 7.0.2 on iPhone devices allows physically proximate attackers to bypass an intended passcode requirement, and dial arbitrary telephone numbers, by making a series of taps of the emergency-call button to trigger a NULL pointer dereference. |
|
12 |
CVE-2013-5147 |
362 |
|
Bypass |
2013-09-19 |
2013-09-26 |
3.7 |
None |
Local |
High |
Not required |
Partial |
Partial |
Partial |
|
Passcode Lock in Apple iOS before 7 does not properly manage the lock state, which allows physically proximate attackers to bypass an intended passcode requirement by leveraging a race condition involving phone calls and ejection of a SIM card. |
|
13 |
CVE-2013-5144 |
264 |
|
Bypass |
2013-10-23 |
2013-10-24 |
3.3 |
None |
Local |
Medium |
Not required |
Partial |
Partial |
None |
|
Passcode Lock in Apple iOS before 7.0.3 on iPhone devices allows physically proximate attackers to bypass an intended passcode requirement, and dial arbitrary telephone numbers, by tapping the emergency-call button during a certain notification and camera-pane state to trigger a NULL pointer dereference. |
|
14 |
CVE-2013-0964 |
20 |
|
Bypass |
2013-01-29 |
2013-02-05 |
3.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
None |
|
The kernel in Apple iOS before 6.1 and Apple TV before 5.2 does not properly validate copyin and copyout arguments, which allows local users to bypass intended pointer restrictions and access locations in the first kernel-memory page by specifying a length of less than one page. |
|
15 |
CVE-2012-3750 |
264 |
|
Bypass |
2012-11-03 |
2017-08-28 |
3.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
None |
|
The Passcode Lock implementation in Apple iOS before 6.0.1 does not properly manage the lock state, which allows physically proximate attackers to bypass an intended passcode requirement and access Passbook passes via unspecified vectors. |
|
16 |
CVE-2012-3738 |
264 |
|
Bypass +Info |
2012-09-20 |
2013-03-25 |
3.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
None |
|
The Emergency Dialer screen in the Passcode Lock implementation in Apple iOS before 6 does not properly limit the dialing methods, which allows physically proximate attackers to bypass intended access restrictions and make FaceTime calls through Voice Dialing, or obtain sensitive contact information by attempting to make a FaceTime call and reading the contact suggestions. |
|
17 |
CVE-2012-3725 |
200 |
|
+Info |
2012-09-20 |
2017-08-28 |
3.3 |
None |
Local Network |
Low |
Not required |
Partial |
None |
None |
|
The DNAv4 protocol implementation in the DHCP component in Apple iOS before 6 sends Wi-Fi packets containing a MAC address of a host on a previously used network, which might allow remote attackers to obtain sensitive information about previous device locations by sniffing an unencrypted Wi-Fi network for these packets. |
|
18 |
CVE-2010-1810 |
|
|
|
2010-09-09 |
2017-08-16 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
|
FaceTime in Apple iOS before 4.1 on the iPhone and iPod touch does not properly handle invalid X.509 certificates, which allows man-in-the-middle attackers to redirect calls via a crafted certificate. |
|
19 |
CVE-2008-4229 |
362 |
|
|
2008-11-25 |
2008-12-03 |
3.7 |
None |
Local |
High |
Not required |
Partial |
Partial |
Partial |
|
Race condition in the Passcode Lock feature in Apple iPhone OS 2.0 through 2.1 and iPhone OS for iPod touch 2.0 through 2.1 allows physically proximate attackers to remove the lock and launch arbitrary applications by restoring the device from a backup. |
|
20 |
CVE-2008-4228 |
264 |
|
|
2008-11-25 |
2008-12-03 |
3.6 |
None |
Local |
Low |
Not required |
None |
Partial |
Partial |
|
The Passcode Lock feature in Apple iPhone OS 1.0 through 2.1 and iPhone OS for iPod touch 1.1 through 2.1 allows physically proximate attackers to leverage the emergency-call ability of locked devices to make a phone call to an arbitrary number. |
