Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

apple iphone os vulnerabilities and exploits

(subscribe to this query)
1.2
CVSSv2

CVE-2011-3440

The Passcode Lock feature in Apple iOS prior to 5.0.1 on the iPad 2 does not properly implement the locked state, which allows physically proximate malicious users to access data by opening a Smart Cover during power-off confirmation.
Apple Iphone OsApple Iphone Os 1.0Apple Iphone Os 1.0.0Apple Iphone Os 1.0.1Apple Iphone Os 1.0.2Apple Iphone Os 1.1Apple Iphone Os 1.1.0Apple Iphone Os 1.1.1Apple Iphone Os 1.1.2Apple Iphone Os 1.1.3Apple Iphone Os 1.1.4Apple Iphone Os 1.1.5
7.5
CVSSv2

CVE-2011-0228

The Data Security component in Apple iOS prior to 4.2.10 and 4.3.x prior to 4.3.5 does not check the basicConstraints parameter during validation of X.509 certificate chains, which allows man-in-the-middle malicious users to spoof an SSL server by using a non-CA certificate to si...
Apple Iphone OsApple Iphone Os 1.0.0Apple Iphone Os 1.0.1Apple Iphone Os 1.0.2Apple Iphone Os 1.1.0Apple Iphone Os 1.1.1Apple Iphone Os 1.1.2Apple Iphone Os 1.1.3Apple Iphone Os 1.1.4Apple Iphone Os 1.1.5Apple Iphone Os 2.0Apple Iphone Os 2.0.0
5.8
CVSSv2

CVE-2013-4616

The WifiPasswordController generateDefaultPassword method in Preferences in Apple iOS 6 and previous versions relies on the UITextChecker suggestWordInLanguage method for selection of Wi-Fi hotspot WPA2 PSK passphrases, which makes it easier for remote malicious users to obtain a...
Apple Iphone OsApple Iphone Os 1.0.0Apple Iphone Os 1.0.1Apple Iphone Os 1.0.2Apple Iphone Os 1.1.0Apple Iphone Os 1.1.1Apple Iphone Os 1.1.2Apple Iphone Os 1.1.3Apple Iphone Os 1.1.4Apple Iphone Os 1.1.5Apple Iphone Os 2.0Apple Iphone Os 2.0.0
1.9
CVSSv2

CVE-2013-0979

lockdownd in Lockdown in Apple iOS prior to 6.1.3 does not properly consider file types during the permission-setting step of a backup restoration, which allows local users to change the permissions of arbitrary files via a backup that contains a pathname with a symlink.
Apple Iphone OsApple Iphone Os 1.0.0Apple Iphone Os 1.0.1Apple Iphone Os 1.0.2Apple Iphone Os 1.1.0Apple Iphone Os 1.1.1Apple Iphone Os 1.1.2Apple Iphone Os 1.1.3Apple Iphone Os 1.1.4Apple Iphone Os 1.1.5Apple Iphone Os 2.0Apple Iphone Os 2.0.0
2.1
CVSSv2

CVE-2013-0980

The Passcode Lock implementation in Apple iOS prior to 6.1.3 does not properly manage the lock state, which allows physically proximate malicious users to bypass an intended passcode requirement by leveraging an error in the emergency-call feature.
Apple Iphone OsApple Iphone Os 1.0.0Apple Iphone Os 1.0.1Apple Iphone Os 1.0.2Apple Iphone Os 1.1.0Apple Iphone Os 1.1.1Apple Iphone Os 1.1.2Apple Iphone Os 1.1.3Apple Iphone Os 1.1.4Apple Iphone Os 1.1.5Apple Iphone Os 2.0Apple Iphone Os 2.0.0
6.8
CVSSv2

CVE-2013-1047

WebKit, as used in Apple iOS prior to 7, allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-09-18-2.
Apple Iphone Os 1.0.0Apple Iphone Os 1.0.1Apple Iphone Os 1.0.2Apple Iphone Os 1.1.0Apple Iphone Os 1.1.1Apple Iphone Os 1.1.2Apple Iphone Os 1.1.3Apple Iphone Os 1.1.4Apple Iphone Os 1.1.5Apple Iphone Os 2.0Apple Iphone Os 2.0.0Apple Iphone Os 2.0.1
5
CVSSv2

CVE-2012-3749

The extensions APIs in the kernel in Apple iOS prior to 6.0.1 provide kernel addresses in responses that contain an OSBundleMachOHeaders key, which makes it easier for remote malicious users to bypass the ASLR protection mechanism via a crafted app.
Apple Iphone OsApple Iphone Os 1.0.0Apple Iphone Os 1.0.1Apple Iphone Os 1.0.2Apple Iphone Os 1.1.0Apple Iphone Os 1.1.1Apple Iphone Os 1.1.2Apple Iphone Os 1.1.3Apple Iphone Os 1.1.4Apple Iphone Os 1.1.5Apple Iphone Os 2.0Apple Iphone Os 2.0.0
3.6
CVSSv2

CVE-2012-3750

The Passcode Lock implementation in Apple iOS prior to 6.0.1 does not properly manage the lock state, which allows physically proximate malicious users to bypass an intended passcode requirement and access Passbook passes via unspecified vectors.
Apple Iphone OsApple Iphone Os 1.0.0Apple Iphone Os 1.0.1Apple Iphone Os 1.0.2Apple Iphone Os 1.1.0Apple Iphone Os 1.1.1Apple Iphone Os 1.1.2Apple Iphone Os 1.1.3Apple Iphone Os 1.1.4Apple Iphone Os 1.1.5Apple Iphone Os 2.0Apple Iphone Os 2.0.0
6.1
CVSSv2

CVE-2011-2391

The IPv6 implementation in the kernel in Apple iOS prior to 7 allows remote malicious users to cause a denial of service (CPU consumption) via crafted ICMPv6 packets.
Apple Mac Os XApple ItunesApple Iphone OsApple Iphone Os 1.0.0Apple Iphone Os 1.0.1Apple Iphone Os 1.0.2Apple Iphone Os 1.1.0Apple Iphone Os 1.1.1Apple Iphone Os 1.1.2Apple Iphone Os 1.1.3Apple Iphone Os 1.1.4Apple Iphone Os 1.1.5
4.3
CVSSv2

CVE-2010-3827

Apple iOS prior to 4.2 does not properly validate signatures before displaying a configuration profile in the configuration installation utility, which allows remote malicious users to spoof profiles via unspecified vectors.
Apple Iphone OsApple Iphone Os 1.0.0Apple Iphone Os 1.0.1Apple Iphone Os 1.0.2Apple Iphone Os 1.1.0Apple Iphone Os 1.1.1Apple Iphone Os 1.1.2Apple Iphone Os 1.1.3Apple Iphone Os 1.1.4Apple Iphone Os 1.1.5Apple Iphone Os 2.0Apple Iphone Os 2.0.0
Preferred Score:
CVSSv2
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2025-2538CVE-2025-24813CVE-2024-57440CVE-2024-48591kube-apiserverCVE-2025-20014universal traffic recorder appCVE-2025-2557rediscode-projectsspoofbypasslocal
Home
/
Search Results
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook