Iphone Apple Iphone

Do you want an email whenever new security vulnerabilities are reported in Apple Iphone?

By the Year

In 2022 there have been 1 vulnerability in Apple Iphone with an average score of 6.5 out of ten. Last year Iphone had 1 security vulnerability published. At the current rates, it appears that the number of vulnerabilities last year and this year may equal out. However, the average CVE base score of the vulnerabilities in 2022 is greater by 1.00.

Year Vulnerabilities Average Score
2022 1 6.50
2021 1 5.50
2020 0 0.00
2019 0 0.00
2018 0 0.00

It may take a day or so for new Iphone vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Apple Iphone Security Vulnerabilities

A logic issue was addressed with improved state management

CVE-2022-22592 6.5 - Medium - March 18, 2022

A logic issue was addressed with improved state management. This issue is fixed in iOS 15.3 and iPadOS 15.3, watchOS 8.4, tvOS 15.3, Safari 15.3, macOS Monterey 12.2. Processing maliciously crafted web content may prevent Content Security Policy from being enforced.

A logic issue was addressed with improved restrictions

CVE-2021-1836 5.5 - Medium - September 08, 2021

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 14.5 and iPadOS 14.5, tvOS 14.5. A local user may be able to create or modify privileged files.

Improper Privilege Management

Use-after-free vulnerability in WebKit in Apple iPod touch 1.1 through 2.0.2, and iPhone 1.0 through 2.0.2

CVE-2008-3632 - September 11, 2008

Use-after-free vulnerability in WebKit in Apple iPod touch 1.1 through 2.0.2, and iPhone 1.0 through 2.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a web page with crafted Cascading Style Sheets (CSS) import statements.

Resource Management Errors

Unspecified vulnerability in Passcode Lock in Apple iPhone 1.0 through 1.1.2

CVE-2008-0034 - January 16, 2008

Unspecified vulnerability in Passcode Lock in Apple iPhone 1.0 through 1.1.2 allows users with physical access to execute applications without entering the passcode via vectors related to emergency calls.

Apple iPhone 1.1.1, with Bluetooth enabled

CVE-2007-3753 - September 27, 2007

Apple iPhone 1.1.1, with Bluetooth enabled, allows physically proximate attackers to cause a denial of service (application termination) and execute arbitrary code via crafted Service Discovery Protocol (SDP) packets, related to insufficient input validation.

Improper Input Validation

Mail in Apple iPhone 1.1.1, when using SSL, does not warn the user when the mail server changes or is not trusted, which might

CVE-2007-3754 - September 27, 2007

Mail in Apple iPhone 1.1.1, when using SSL, does not warn the user when the mail server changes or is not trusted, which might allow remote attackers to steal credentials and read email via a man-in-the-middle (MITM) attack.

authentification

Mail in Apple iPhone 1.1.1

CVE-2007-3755 - September 27, 2007

Mail in Apple iPhone 1.1.1 allows remote user-assisted attackers to force the iPhone user to make calls to arbitrary telephone numbers via a "tel:" link, which does not prompt the user before dialing the number.

Improper Input Validation

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Apple Iphone or by Apple? Click the Watch button to subscribe.

Apple
Vendor

Apple Iphone
Product

subscribe