Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
iphone_os vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-4232
Safari in Apple iPhone OS 2.0 up to and including 2.1 and iPhone OS for iPod touch 2.1 up to and including 2.1 does not restrict an IFRAME's content display to the boundaries of the IFRAME, which allows remote malicious users to spoof a user interface via a crafted HTML docu...
Apple Iphone Os 1.0.2
Apple Iphone Os 1.0
Apple Safari
Apple Iphone Os 1.1.1
Apple Iphone Os 1.1.2
Apple Iphone Os 1.1.3
Apple Iphone Os 1.1
Apple Iphone Os 1.0.1
Apple Iphone Os 2.1
Apple Iphone Os 2.0
Apple Iphone Os 1.1.5
Apple Iphone Os 1.1.4
Apple Iphone Os 2.0.2
Apple Iphone Os 2.0.1
NA
CVE-2008-4233
Safari in Apple iPhone OS 1.0 up to and including 2.1 and iPhone OS for iPod touch 1.1 up to and including 2.1 does not isolate the call-approval dialog from the process of launching new applications, which allows remote malicious users to make arbitrary phone calls via a crafted...
Apple Iphone Os 1.0.2
Apple Iphone Os 1.0
Apple Safari
Apple Iphone Os 1.1.1
Apple Iphone Os 1.1.2
Apple Iphone Os 1.1.3
Apple Iphone Os 1.1
Apple Iphone Os 1.0.1
Apple Iphone Os 2.1
Apple Iphone Os 1.1.4
Apple Iphone Os 2.0
Apple Iphone Os 1.1.5
Apple Iphone Os 2.0.2
Apple Iphone Os 2.0.1
NA
CVE-2013-6835
TelephonyUI Framework in Apple iOS 7 prior to 7.1, when Safari is used, does not require user confirmation for FaceTime audio calls, which allows remote malicious users to obtain telephone number or e-mail address information via a facetime-audio: URL.
Apple Iphone Os
Apple Iphone Os 7.0.2
Apple Iphone Os 7.0.3
Apple Iphone Os 7.0
Apple Iphone Os 7.0.1
Apple Iphone Os 7.0.4
Apple Iphone Os 7.0.5
1 EDB exploit
NA
CVE-2013-3955
The get_xattrinfo function in the XNU kernel in Apple iOS 5.x and 6.x up to and including 6.1.3 on iPad devices does not properly validate the header of an AppleDouble file, which might allow local users to cause a denial of service (memory corruption) or have unspecified other i...
Apple Iphone Os 5.0
Apple Iphone Os 6.0
Apple Iphone Os 6.1
Apple Iphone Os 5.0.1
Apple Iphone Os 5.1
Apple Iphone Os 6.0.1
Apple Iphone Os 6.1.3
Apple Iphone Os 6.0.2
Apple Iphone Os 5.1.1
Apple Iphone Os 6.1.2
Apple Ipad
Apple Ipad Mini -
Apple Ipad2 -
NA
CVE-2011-0226
Integer signedness error in psaux/t1decode.c in FreeType prior to 2.4.6, as used in CoreGraphics in Apple iOS prior to 4.2.9 and 4.3.x prior to 4.3.4 and other products, allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and ap...
Freetype Freetype 2.4.3
Freetype Freetype 2.4.2
Freetype Freetype 2.3.8
Freetype Freetype 2.3.7
Freetype Freetype 2.3.0
Freetype Freetype 2.2.1
Freetype Freetype 2.4.1
Freetype Freetype 2.4.0
Freetype Freetype 2.3.6
Freetype Freetype 2.3.5
Freetype Freetype 2.2.10
Freetype Freetype
Freetype Freetype 2.3.9
Freetype Freetype 2.3.10
Freetype Freetype 2.3.4
Freetype Freetype 2.3.3
Freetype Freetype 2.4.4
Freetype Freetype 2.3.11
Freetype Freetype 2.3.12
Freetype Freetype 2.3.2
Freetype Freetype 2.3.1
Apple Iphone Os 4.0
NA
CVE-2009-1702
Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari prior to 4.0, iPhone OS 1.0 up to and including 2.2.1, and iPhone OS for iPod touch 1.1 up to and including 2.2.1 allows remote malicious users to inject arbitrary web script or HTML via vectors related to imprope...
Apple Safari 3.0.4b
Apple Safari 2.0.3
Apple Safari 3.0.4
Apple Safari 3.0.1
Apple Safari 2.0.1
Apple Safari 2.0.2
Apple Safari 3.0.0
Apple Safari 3.0.3b
Apple Safari 3.0.3
Apple Safari 3.0.2b
Apple Safari 3.0.2
Apple Safari 2.0.0
Apple Safari 2.0
Apple Safari 3.1.1
Apple Safari 3.1.0
Apple Safari 3.0.1b
Apple Safari
Apple Safari 3.2.0
Apple Safari 3.1.2
Apple Safari 2.0.4
Apple Safari 3.1.0b
Apple Safari 3.0.0b
NA
CVE-2009-1698
WebKit in Apple Safari prior to 4.0, iPhone OS 1.0 up to and including 2.2.1, and iPhone OS for iPod touch 1.1 up to and including 2.2.1 does not initialize a pointer during handling of a Cascading Style Sheets (CSS) attr function call with a large numerical argument, which allow...
Apple Safari 3.0.4b
Apple Safari 2.0.3
Apple Safari 3.0.4
Apple Safari 3.0.1
Apple Safari 2.0.1
Apple Safari 2.0.2
Apple Safari 3.0.0
Apple Safari 3.1.0b
Apple Safari 3.1.0
Apple Safari 3.0.1b
Apple Safari 3.1.2
Apple Safari 3.1.1
Apple Safari 3.0.2b
Apple Safari 3.0.2
Apple Safari 2.0.4
Apple Safari 2.0
Apple Safari
Apple Safari 3.0.0b
Apple Safari 3.2.0
Apple Safari 3.0.3b
Apple Safari 3.0.3
Apple Safari 2.0.0
NA
CVE-2009-1701
Use-after-free vulnerability in the JavaScript DOM implementation in WebKit in Apple Safari prior to 4.0, iPhone OS 1.0 up to and including 2.2.1, and iPhone OS for iPod touch 1.1 up to and including 2.2.1 allows remote malicious users to execute arbitrary code or cause a denial ...
Apple Safari 3.0.4b
Apple Safari 2.0.3
Apple Safari 3.0.4
Apple Safari 3.0.1
Apple Safari 2.0.1
Apple Safari 2.0.2
Apple Safari 3.0.0
Apple Safari 3.1.0
Apple Safari 3.2.0
Apple Safari 3.1.2
Apple Safari 3.0.3
Apple Safari 3.0.2b
Apple Safari 2.0.4
Apple Safari 2.0.0
Apple Safari 2.0
Apple Safari 3.0.3b
Apple Safari 3.0.0b
Apple Safari 3.1.1
Apple Safari 3.1.0b
Apple Safari 3.0.2
Apple Safari 3.0.1b
Apple Safari
NA
CVE-2009-1700
The XSLT implementation in WebKit in Apple Safari prior to 4.0, iPhone OS 1.0 up to and including 2.2.1, and iPhone OS for iPod touch 1.1 up to and including 2.2.1 does not properly handle redirects, which allows remote malicious users to read XML content from arbitrary web pages...
Apple Safari 3.0.4b
Apple Safari 2.0.3
Apple Safari 3.0.4
Apple Safari 3.0.1
Apple Safari 2.0.1
Apple Safari 2.0.2
Apple Safari 3.0.0
Apple Safari 3.0.0b
Apple Safari 3.1.0
Apple Safari 3.0.3b
Apple Safari 3.1.2
Apple Safari 3.1.0b
Apple Safari 3.0.3
Apple Safari 3.0.2
Apple Safari 2.0.4
Apple Safari 2.0
Apple Safari 3.2.0
Apple Safari 3.1.1
Apple Safari 3.0.2b
Apple Safari 3.0.1b
Apple Safari 2.0.0
Apple Safari
NA
CVE-2009-1724
Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari prior to 4.0.2, as used on iPhone OS prior to 3.1, iPhone OS prior to 3.1.1 for iPod touch, and other platforms, allows remote malicious users to inject arbitrary web script or HTML via vectors related to parent a...
Apple Safari 3.0.4b
Apple Safari 2.0.3
Apple Safari
Apple Safari 3.0.4
Apple Safari 3.0.1
Apple Safari 2.0.1
Apple Safari 2.0.2
Apple Safari 3.0.0
Apple Safari 3.2.2
Apple Safari 3.0.3b
Apple Safari 3.0.3
Apple Safari 3.1.2
Apple Safari 3.0.2
Apple Safari 2.0.4
Apple Safari 2.0.0
Apple Safari 2.0
Apple Safari 3.1.1
Apple Safari 3.1.0b
Apple Safari 4.0.0b
Apple Safari 4.0
Apple Safari 3.1.0
Apple Safari 3.0.0b
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-24955
man-in-the-middle
dos
CVE-2024-2818
CVE-2024-30584
CVE-2024-31134
camera
CVE-2023-45866
CVE-2024-30585
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »