Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple iphone os 4.0 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2011-0159
The Safari Settings feature in Safari in Apple iOS 4.x prior to 4.3 does not properly implement the clearing of cookies during execution of the Safari application, which might make it easier for remote web servers to track users by setting a cookie.
Apple Iphone Os 4.0
Apple Iphone Os 4.1
Apple Iphone Os 4.2
2.6
CVSSv2
CVE-2011-3427
The Data Security component in Apple iOS prior to 5 and Apple TV prior to 4.4 does not properly restrict use of the MD5 hash algorithm within X.509 certificates, which makes it easier for man-in-the-middle malicious users to spoof servers or obtain sensitive information via a cra...
Apple Apple Tv 4.2
Apple Apple Tv 4.3
Apple Apple Tv 4.0
Apple Apple Tv 4.1
Apple Iphone Os 4.3.2
Apple Iphone Os 4.3.1
Apple Iphone Os 4.0
Apple Iphone Os 4.0.2
Apple Iphone Os 3.2.2
Apple Iphone Os 3.2.1
Apple Iphone Os 4.3.5
Apple Iphone Os 4.3.3
Apple Iphone Os 4.1
Apple Iphone Os 3.2
Apple Iphone Os 3.1
Apple Iphone Os 3.0
Apple Iphone Os 4.2.5
Apple Iphone Os 4.2.1
Apple Iphone Os 4.0.1
Apple Iphone Os 3.1.3
Apple Iphone Os 3.1.2
Apple Iphone Os 4.3.0
5
CVSSv2
CVE-2011-3259
The kernel in Apple iOS prior to 5 and Apple TV prior to 4.4 does not properly recover memory allocated for incomplete TCP connections, which allows remote malicious users to cause a denial of service (resource consumption) by making many connection attempts.
Apple Apple Tv 4.1
Apple Apple Tv 4.2
Apple Apple Tv 4.3
Apple Apple Tv 4.0
Apple Iphone Os 4.3.3
Apple Iphone Os 4.3.2
Apple Iphone Os 4.0
Apple Iphone Os 4.0.2
Apple Iphone Os 3.2.2
Apple Iphone Os 3.2.1
Apple Iphone Os 3.0
Apple Iphone Os 4.3.5
Apple Iphone Os 4.2.5
Apple Iphone Os 4.2.1
Apple Iphone Os 4.0.1
Apple Iphone Os 3.1
Apple Iphone Os 3.1.3
Apple Iphone Os 4.1
Apple Iphone Os 3.2
Apple Iphone Os 3.1.2
Apple Iphone Os 4.3.1
Apple Iphone Os 4.3.0
6.2
CVSSv2
CVE-2010-4012
Race condition in Apple iOS 4.0 up to and including 4.1 for iPhone 3G and later allows physically proximate malicious users to bypass the passcode lock by making a call from the Emergency Call screen, then quickly pressing the Sleep/Wake button.
Apple Iphone Os 4.0
Apple Iphone Os 4.1
9.3
CVSSv2
CVE-2010-1797
Multiple stack-based buffer overflows in the cff_decoder_parse_charstrings function in the CFF Type2 CharStrings interpreter in cff/cffgload.c in FreeType prior to 2.4.2, as used in Apple iOS prior to 4.0.2 on the iPhone and iPod touch and prior to 3.2.2 on the iPad, allow remote...
Apple Iphone Os 1.0.0
Apple Iphone Os 1.1.0
Apple Iphone Os 1.1.1
Apple Iphone Os 1.1.3
Apple Iphone Os 2.0
Apple Iphone Os 2.0.0
Apple Iphone Os 2.0.2
Apple Iphone Os 2.1
Apple Iphone Os 2.2.1
Apple Iphone Os 2.2
Apple Iphone Os 3.1.2
Apple Iphone Os 1.0.1
Apple Iphone Os 1.1.4
Apple Iphone Os 2.0.1
Apple Iphone Os 2.1.1
Apple Iphone Os 3.0
Apple Iphone Os 3.0.1
Apple Iphone Os 3.1.3
Apple Iphone Os 3.2
Apple Iphone Os 4.0
Apple Iphone Os 1.0.2
Apple Iphone Os 1.1.2
2 EDB exploits
1 Github repository
5
CVSSv2
CVE-2011-1418
The stateless address autoconfiguration (aka SLAAC) functionality in the IPv6 networking implementation in Apple iOS prior to 4.3 and Apple TV prior to 4.2 places the MAC address into the IPv6 address, which makes it easier for remote IPv6 servers to track users by logging source...
Apple Iphone Os 3.1.3
Apple Iphone Os 3.0
Apple Iphone Os 2.0.2
Apple Iphone Os 1.1.4
Apple Iphone Os 1.0.2
Apple Iphone Os 1.0.1
Apple Iphone Os 4.0
Apple Iphone Os 2.0
Apple Iphone Os 2.2.1
Apple Iphone Os 3.1.2
Apple Iphone Os 2.1
Apple Iphone Os 2.0.1
Apple Iphone Os 4.1
Apple Iphone Os 1.0.0
Apple Iphone Os
Apple Iphone Os 3.2.2
Apple Iphone Os 1.1.5
Apple Iphone Os 2.2
Apple Iphone Os 1.1.1
Apple Iphone Os 1.1.0
Apple Iphone Os 1.1.3
Apple Iphone Os 1.1.2
7.8
CVSSv2
CVE-2011-0162
Wi-Fi in Apple iOS prior to 4.3 and Apple TV prior to 4.2 does not properly perform bounds checking for Wi-Fi frames, which allows remote malicious users to cause a denial of service (device reset) via unspecified traffic on the local wireless network.
Apple Iphone Os 3.0
Apple Iphone Os 2.2.1
Apple Iphone Os 2.1.1
Apple Iphone Os 2.2
Apple Iphone Os 1.0.1
Apple Iphone Os 3.0.1
Apple Iphone Os 2.0
Apple Iphone Os 3.2
Apple Iphone Os 3.1.3
Apple Iphone Os 3.1
Apple Iphone Os 2.0.0
Apple Iphone Os 1.1.4
Apple Iphone Os 1.0.2
Apple Iphone Os 3.2.1
Apple Iphone Os 4.0.1
Apple Iphone Os 4.0
Apple Iphone Os 4.0.2
Apple Iphone Os 3.1.2
Apple Iphone Os 2.1
Apple Iphone Os 1.1.1
Apple Iphone Os 1.1.0
Apple Iphone Os 4.1
2.6
CVSSv2
CVE-2011-3253
CalDAV in Apple iOS prior to 5 does not validate X.509 certificates for SSL sessions, which allows man-in-the-middle malicious users to spoof calendar servers and obtain sensitive information via an arbitrary certificate.
Apple Iphone Os 4.3.3
Apple Iphone Os 4.3.1
Apple Iphone Os 4.0
Apple Iphone Os 4.0.1
Apple Iphone Os 3.2
Apple Iphone Os 3.2.1
Apple Iphone Os 3.0
Apple Iphone Os 4.3.5
Apple Iphone Os 4.2.8
Apple Iphone Os 4.2.5
Apple Iphone Os 4.2.1
Apple Iphone Os 4.1
Apple Iphone Os 3.1
Apple Iphone Os 3.1.3
Apple Iphone Os 3.1.2
Apple Iphone Os 4.3.2
Apple Iphone Os 4.3.0
Apple Iphone Os 4.0.2
Apple Iphone Os 3.2.2
4.3
CVSSv2
CVE-2011-3255
CFNetwork in Apple iOS prior to 5 stores AppleID credentials in an unspecified file, which makes it easier for remote malicious users to obtain sensitive information via a crafted application.
Apple Iphone Os 4.3.0
Apple Iphone Os 4.2.8
Apple Iphone Os 4.2.5
Apple Iphone Os 4.0.1
Apple Iphone Os 3.1
Apple Iphone Os 4.3.2
Apple Iphone Os 4.3.1
Apple Iphone Os 4.0.2
Apple Iphone Os 3.2.1
Apple Iphone Os 4.3.5
Apple Iphone Os 4.3.3
Apple Iphone Os 4.0
Apple Iphone Os 3.2
Apple Iphone Os 3.2.2
Apple Iphone Os 3.0
Apple Iphone Os 4.2.1
Apple Iphone Os 4.1
Apple Iphone Os 3.1.3
Apple Iphone Os 3.1.2
4.3
CVSSv2
CVE-2011-3256
FreeType 2 prior to 2.4.7, as used in CoreGraphics in Apple iOS prior to 5, Mandriva Enterprise Server 5, and possibly other products, allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font, a different vulnerab...
Apple Iphone Os 4.3.3
Apple Iphone Os 4.1
Apple Iphone Os 4.0
Apple Iphone Os 3.2
Apple Iphone Os 3.1
Apple Iphone Os 3.0
Apple Iphone Os 4.2.5
Apple Iphone Os 4.2.1
Apple Iphone Os 4.0.1
Apple Iphone Os 3.1.3
Apple Iphone Os 3.1.2
Apple Iphone Os 4.3.0
Apple Iphone Os 4.2.8
Apple Iphone Os 3.2.1
Apple Iphone Os 4.3.5
Apple Iphone Os 4.3.2
Apple Iphone Os 4.3.1
Apple Iphone Os 4.0.2
Apple Iphone Os 3.2.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »