CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   

Apple » Iphone Os » * * * * : Security Vulnerabilities

Cpe Name:cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2023-28206 787 Exec Code 2023-04-10 2023-05-08
0.0
None ??? ??? ??? ??? ??? ???
An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.6.5, iOS 16.4.1 and iPadOS 16.4.1, iOS 15.7.5 and iPadOS 15.7.5, macOS Big Sur 11.7.6, macOS Ventura 13.3.1. An app may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited.
2 CVE-2023-28205 416 Exec Code 2023-04-10 2023-05-12
0.0
None ??? ??? ??? ??? ??? ???
A use after free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13.3.1, iOS 16.4.1 and iPadOS 16.4.1, iOS 15.7.5 and iPadOS 15.7.5, Safari 16.4.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
3 CVE-2023-28201 Exec Code 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
This issue was addressed with improved state management. This issue is fixed in Safari 16.4, iOS 15.7.4 and iPadOS 15.7.4, iOS 16.4 and iPadOS 16.4, macOS Ventura 13.3. A remote user may be able to cause unexpected app termination or arbitrary code execution
4 CVE-2023-28200 20 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
A validation issue was addressed with improved input sanitization. This issue is fixed in macOS Big Sur 11.7.5, macOS Monterey 12.6.4, iOS 15.7.4 and iPadOS 15.7.4, macOS Ventura 13.3. An app may be able to disclose kernel memory
5 CVE-2023-28194 2023-05-08 2023-05-15
0.0
None ??? ??? ??? ??? ??? ???
The issue was addressed with improved checks. This issue is fixed in iOS 16.4 and iPadOS 16.4. An app may be able to unexpectedly create a bookmark on the Home Screen
6 CVE-2023-28182 287 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
The issue was addressed with improved authentication. This issue is fixed in iOS 15.7.4 and iPadOS 15.7.4, macOS Ventura 13.3, macOS Big Sur 11.7.5, macOS Monterey 12.6.4, iOS 16.4 and iPadOS 16.4. A user in a privileged network position may be able to spoof a VPN server that is configured with EAP-only authentication on a device
7 CVE-2023-28181 Exec Code 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
The issue was addressed with improved memory handling. This issue is fixed in macOS Big Sur 11.7.7, macOS Ventura 13.3, tvOS 16.4, iOS 15.7.6 and iPadOS 15.7.6, watchOS 9.4, iOS 16.4 and iPadOS 16.4. An app may be able to execute arbitrary code with kernel privileges
8 CVE-2023-28178 Bypass 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
A logic issue was addressed with improved validation. This issue is fixed in macOS Monterey 12.6.4, iOS 16.4 and iPadOS 16.4, macOS Ventura 13.3. An app may be able to bypass Privacy preferences
9 CVE-2023-27970 787 Exec Code 2023-05-08 2023-05-15
0.0
None ??? ??? ??? ??? ??? ???
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 16.4 and iPadOS 16.4. An app may be able to execute arbitrary code with kernel privileges
10 CVE-2023-27969 416 Exec Code 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 15.7.4 and iPadOS 15.7.4, macOS Ventura 13.3, tvOS 16.4, watchOS 9.4, iOS 16.4 and iPadOS 16.4. An app may be able to execute arbitrary code with kernel privileges
11 CVE-2023-27963 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
The issue was addressed with additional permissions checks. This issue is fixed in iOS 15.7.4 and iPadOS 15.7.4, macOS Ventura 13.3, watchOS 9.4, macOS Monterey 12.6.4, iOS 16.4 and iPadOS 16.4. A shortcut may be able to use sensitive data with certain actions without prompting the user
12 CVE-2023-27961 20 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
Multiple validation issues were addressed with improved input sanitization. This issue is fixed in macOS Ventura 13.3, iOS 15.7.4 and iPadOS 15.7.4, macOS Big Sur 11.7.5, watchOS 9.4, macOS Monterey 12.6.4, iOS 16.4 and iPadOS 16.4. Importing a maliciously crafted calendar invitation may exfiltrate user information
13 CVE-2023-27959 Exec Code 2023-05-08 2023-05-12
0.0
None ??? ??? ??? ??? ??? ???
The issue was addressed with improved memory handling. This issue is fixed in iOS 16.4 and iPadOS 16.4. An app may be able to execute arbitrary code with kernel privileges
14 CVE-2023-27956 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
The issue was addressed with improved memory handling. This issue is fixed in iOS 15.7.4 and iPadOS 15.7.4, macOS Ventura 13.3, tvOS 16.4, watchOS 9.4, iOS 16.4 and iPadOS 16.4. Processing a maliciously crafted image may result in disclosure of process memory
15 CVE-2023-27955 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
The issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.7.5, macOS Monterey 12.6.4, iOS 16.4 and iPadOS 16.4, macOS Ventura 13.3. An app may be able to read arbitrary files
16 CVE-2023-27954 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
The issue was addressed by removing origin information. This issue is fixed in macOS Ventura 13.3, iOS 15.7.4 and iPadOS 15.7.4, tvOS 16.4, watchOS 9.4, Safari 16.4, iOS 16.4 and iPadOS 16.4. A website may be able to track sensitive user information
17 CVE-2023-27949 125 Exec Code 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Monterey 12.6.4, iOS 15.7.4 and iPadOS 15.7.4, macOS Ventura 13.3. Processing a maliciously crafted file may lead to unexpected app termination or arbitrary code execution
18 CVE-2023-27946 125 Exec Code 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.7.5, macOS Monterey 12.6.4, iOS 15.7.4 and iPadOS 15.7.4, macOS Ventura 13.3. Processing a maliciously crafted file may lead to unexpected app termination or arbitrary code execution
19 CVE-2023-27943 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
This issue was addressed with improved checks. This issue is fixed in iOS 16.4 and iPadOS 16.4, macOS Ventura 13.3. Files downloaded from the internet may not have the quarantine flag applied
20 CVE-2023-27942 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.3, tvOS 16.4, macOS Big Sur 11.7.5, watchOS 9.4, macOS Monterey 12.6.4, iOS 16.4 and iPadOS 16.4. An app may be able to access user-sensitive data
21 CVE-2023-27941 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
A validation issue was addressed with improved input sanitization. This issue is fixed in macOS Big Sur 11.7.5, iOS 15.7.4 and iPadOS 15.7.4, macOS Ventura 13.3. An app may be able to disclose kernel memory
22 CVE-2023-27937 190 Exec Code Overflow 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
An integer overflow was addressed with improved input validation. This issue is fixed in macOS Ventura 13.3, tvOS 16.4, macOS Big Sur 11.7.5, watchOS 9.4, macOS Monterey 12.6.4, iOS 16.4 and iPadOS 16.4. Parsing a maliciously crafted plist may lead to an unexpected app termination or arbitrary code execution
23 CVE-2023-27936 787 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.7.5, macOS Monterey 12.6.4, iOS 15.7.4 and iPadOS 15.7.4, macOS Ventura 13.3. An app may be able to cause unexpected system termination or write kernel memory
24 CVE-2023-27933 Exec Code 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.3, tvOS 16.4, watchOS 9.4, macOS Monterey 12.6.4, iOS 16.4 and iPadOS 16.4. An app with root privileges may be able to execute arbitrary code with kernel privileges
25 CVE-2023-27932 Bypass 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
This issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.3, tvOS 16.4, watchOS 9.4, Safari 16.4, iOS 16.4 and iPadOS 16.4. Processing maliciously crafted web content may bypass Same Origin Policy
26 CVE-2023-27931 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.3, tvOS 16.4, watchOS 9.4, macOS Big Sur 11.7.3, iOS 16.4 and iPadOS 16.4. An app may be able to access user-sensitive data
27 CVE-2023-27929 125 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 9.4, iOS 16.4 and iPadOS 16.4, tvOS 16.4, macOS Ventura 13.3. Processing a maliciously crafted image may result in disclosure of process memory
28 CVE-2023-27928 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Ventura 13.3, iOS 15.7.4 and iPadOS 15.7.4, tvOS 16.4, macOS Big Sur 11.7.5, watchOS 9.4, iOS 16.4 and iPadOS 16.4. An app may be able to access information about a user’s contacts
29 CVE-2023-23543 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
The issue was addressed with additional restrictions on the observability of app states. This issue is fixed in iOS 15.7.4 and iPadOS 15.7.4, macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4. A sandboxed app may be able to determine which app is currently using the camera
30 CVE-2023-23541 2023-05-08 2023-05-16
0.0
None ??? ??? ??? ??? ??? ???
A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 15.7.4 and iPadOS 15.7.4, iOS 16.4 and iPadOS 16.4. An app may be able to access information about a user’s contacts
31 CVE-2023-23540 Exec Code 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
The issue was addressed with improved memory handling. This issue is fixed in macOS Big Sur 11.7.5, macOS Monterey 12.6.4, iOS 16.4 and iPadOS 16.4. An app may be able to execute arbitrary code with kernel privileges
32 CVE-2023-23537 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 16.4 and iPadOS 16.4, macOS Big Sur 11.7.5, iOS 15.7.4 and iPadOS 15.7.4, watchOS 9.4, macOS Ventura 13.3. An app may be able to read sensitive location information
33 CVE-2023-23536 Exec Code 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
The issue was addressed with improved bounds checks. This issue is fixed in macOS Big Sur 11.7.5, iOS 15.7.4 and iPadOS 15.7.4, iOS 16.4 and iPadOS 16.4, macOS Ventura 13.3. An app may be able to execute arbitrary code with kernel privileges
34 CVE-2023-23535 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.6, iOS 15.7.4 and iPadOS 15.7.4, tvOS 16.4, macOS Big Sur 11.7.5, watchOS 9.4, iOS 16.4 and iPadOS 16.4. Processing a maliciously crafted image may result in disclosure of process memory
35 CVE-2023-23532 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
This issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4. An app may be able to break out of its sandbox
36 CVE-2023-23531 Exec Code 2023-02-27 2023-03-23
0.0
None ??? ??? ??? ??? ??? ???
The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.2, iOS 16.3 and iPadOS 16.3. An app may be able to execute arbitrary code out of its sandbox or with certain elevated privileges.
37 CVE-2023-23530 Exec Code 2023-02-27 2023-03-08
0.0
None ??? ??? ??? ??? ??? ???
The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.2, iOS 16.3 and iPadOS 16.3. An app may be able to execute arbitrary code out of its sandbox or with certain elevated privileges.
38 CVE-2023-23529 843 Exec Code 2023-02-27 2023-03-28
0.0
None ??? ??? ??? ??? ??? ???
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.2.1, iOS 16.3.1 and iPadOS 16.3.1, Safari 16.3. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..
39 CVE-2023-23528 125 2023-05-08 2023-05-11
0.0
None ??? ??? ??? ??? ??? ???
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in tvOS 16.4, iOS 16.4 and iPadOS 16.4. Processing a maliciously crafted Bluetooth packet may result in disclosure of process memory
40 CVE-2023-23527 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
The issue was addressed with improved checks. This issue is fixed in iOS 16.4 and iPadOS 16.4, macOS Big Sur 11.7.5, watchOS 9.4, macOS Ventura 13.3, tvOS 16.4, macOS Monterey 12.6.4. A user may gain access to protected parts of the file system
41 CVE-2023-23526 Bypass 2023-05-08 2023-05-11
0.0
None ??? ??? ??? ??? ??? ???
This was addressed with additional checks by Gatekeeper on files downloaded from an iCloud shared-by-me folder. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4. A file from an iCloud shared-by-me folder may be able to bypass Gatekeeper
42 CVE-2023-23525 +Priv 2023-05-08 2023-05-19
0.0
None ??? ??? ??? ??? ??? ???
This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.7.5, macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4. An app may be able to gain root privileges
43 CVE-2023-23524 400 2023-02-27 2023-03-08
0.0
None ??? ??? ??? ??? ??? ???
A denial-of-service issue was addressed with improved input validation. This issue is fixed in macOS Ventura 13.2.1, iOS 16.3.1 and iPadOS 16.3.1, tvOS 16.3.2, watchOS 9.3.1. Processing a maliciously crafted certificate may lead to a denial-of-service.
44 CVE-2023-23523 2023-05-08 2023-05-11
0.0
None ??? ??? ??? ??? ??? ???
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4. Photos belonging to the Hidden Photos Album could be viewed without authentication through Visual Lookup
45 CVE-2023-23520 367 2023-02-27 2023-03-08
0.0
None ??? ??? ??? ??? ??? ???
A race condition was addressed with additional validation. This issue is fixed in macOS Ventura 13.2, iOS 16.3 and iPadOS 16.3. A user may be able to read arbitrary files as root.
46 CVE-2023-23519 787 Mem. Corr. 2023-02-27 2023-03-08
0.0
None ??? ??? ??? ??? ??? ???
A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.2, tvOS 16.3, iOS 16.3 and iPadOS 16.3, watchOS 9.3. Processing an image may lead to a denial-of-service.
47 CVE-2023-23518 Exec Code 2023-02-27 2023-03-08
0.0
None ??? ??? ??? ??? ??? ???
The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.2, macOS Monterey 12.6.3, tvOS 16.3, Safari 16.3, watchOS 9.3, iOS 16.3 and iPadOS 16.3, macOS Big Sur 11.7.3. Processing maliciously crafted web content may lead to arbitrary code execution.
48 CVE-2023-23517 Exec Code 2023-02-27 2023-03-08
0.0
None ??? ??? ??? ??? ??? ???
The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.2, macOS Monterey 12.6.3, tvOS 16.3, Safari 16.3, watchOS 9.3, iOS 16.3 and iPadOS 16.3, macOS Big Sur 11.7.3. Processing maliciously crafted web content may lead to arbitrary code execution.
49 CVE-2023-23514 416 Exec Code 2023-02-27 2023-03-28
0.0
None ??? ??? ??? ??? ??? ???
A use after free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13.2.1, iOS 16.3.1 and iPadOS 16.3.1. An app may be able to execute arbitrary code with kernel privileges..
50 CVE-2023-23512 2023-02-27 2023-03-04
0.0
None ??? ??? ??? ??? ??? ???
The issue was addressed with improved handling of caches. This issue is fixed in macOS Ventura 13.2, tvOS 16.3, iOS 16.3 and iPadOS 16.3, watchOS 9.3. Visiting a website may lead to an app denial-of-service.
Total number of vulnerabilities : 2881   Page : 1 (This Page)2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.