| # |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
|
1 |
CVE-2022-26764 |
787 |
|
Exec Code Mem. Corr. Bypass |
2022-05-26 |
2022-06-08 |
2.6 |
None |
Remote |
High |
Not required |
None |
Partial |
None |
|
A memory corruption issue was addressed with improved validation. This issue is fixed in watchOS 8.6, tvOS 15.5, macOS Monterey 12.4, iOS 15.5 and iPadOS 15.5. An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations. |
|
2 |
CVE-2022-26724 |
287 |
|
|
2022-05-26 |
2022-06-03 |
2.1 |
None |
Local |
Low |
Not required |
None |
Partial |
None |
|
An authentication issue was addressed with improved state management. This issue is fixed in tvOS 15.5. A local user may be able to enable iCloud Photos without authentication. |
|
3 |
CVE-2022-22621 |
200 |
|
+Info |
2022-03-18 |
2022-03-24 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
This issue was addressed with improved checks. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4, macOS Monterey 12.3, watchOS 8.5. A person with physical access to an iOS device may be able to see sensitive information via keyboard suggestions. |
|
4 |
CVE-2021-30915 |
|
|
|
2021-08-24 |
2021-11-02 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
A logic issue was addressed with improved state management. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, tvOS 15.1, watchOS 8.1, Security Update 2021-007 Catalina, macOS Big Sur 11.6.1. A person with physical access to an iOS device may be able to determine characteristics of a user's password in a secure text entry field. |
|
5 |
CVE-2021-30810 |
862 |
|
|
2021-10-19 |
2021-11-03 |
2.9 |
None |
Local Network |
Medium |
Not required |
None |
Partial |
None |
|
An authorization issue was addressed with improved state management. This issue is fixed in iOS 15 and iPadOS 15, watchOS 8, tvOS 15. An attacker in physical proximity may be able to force a user onto a malicious Wi-Fi network during device setup. |
|
6 |
CVE-2021-30697 |
|
|
+Info |
2021-09-08 |
2021-09-17 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
A logic issue was addressed with improved state management. This issue is fixed in tvOS 14.6, Security Update 2021-004 Mojave, iOS 14.6 and iPadOS 14.6, Security Update 2021-003 Catalina, macOS Big Sur 11.4, watchOS 7.5. A local user may be able to leak sensitive user information. |
|
7 |
CVE-2021-1836 |
269 |
|
|
2021-09-08 |
2021-09-15 |
2.1 |
None |
Local |
Low |
Not required |
None |
Partial |
None |
|
A logic issue was addressed with improved restrictions. This issue is fixed in iOS 14.5 and iPadOS 14.5, tvOS 14.5. A local user may be able to create or modify privileged files. |
|
8 |
CVE-2021-1822 |
668 |
|
|
2021-09-08 |
2021-09-16 |
2.1 |
None |
Local |
Low |
Not required |
None |
Partial |
None |
|
A logic issue was addressed with improved restrictions. This issue is fixed in iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. A local user may be able to modify protected parts of the file system. |
|
9 |
CVE-2021-1815 |
22 |
|
Dir. Trav. |
2021-09-08 |
2021-09-16 |
2.1 |
None |
Local |
Low |
Not required |
None |
Partial |
None |
|
A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Big Sur 11.3, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. A local user may be able to modify protected parts of the file system. |
|
10 |
CVE-2021-1797 |
|
|
|
2021-04-02 |
2021-05-04 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
The issue was addressed with improved permissions logic. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. A local user may be able to read arbitrary files. |
|
11 |
CVE-2021-1769 |
|
|
Bypass |
2021-04-02 |
2021-04-08 |
2.1 |
None |
Local |
Low |
Not required |
None |
Partial |
None |
|
A logic issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. A malicious attacker with arbitrary read and write capability may be able to bypass Pointer Authentication. |
|
12 |
CVE-2021-1740 |
22 |
|
Dir. Trav. |
2021-09-08 |
2021-09-15 |
2.1 |
None |
Local |
Low |
Not required |
None |
Partial |
None |
|
A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in Security Update 2021-002 Catalina, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5, macOS Big Sur 11.3. A local user may be able to modify protected parts of the file system. |
|
13 |
CVE-2021-1739 |
22 |
|
Dir. Trav. |
2021-09-08 |
2021-09-15 |
2.1 |
None |
Local |
Low |
Not required |
None |
Partial |
None |
|
A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in Security Update 2021-002 Catalina, Security Update 2021-003 Mojave, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5, macOS Big Sur 11.3. A local user may be able to modify protected parts of the file system. |
|
14 |
CVE-2020-29623 |
|
|
|
2021-04-02 |
2021-06-02 |
2.1 |
None |
Local |
Low |
Not required |
None |
Partial |
None |
|
"Clear History and Website Data" did not clear the history. The issue was addressed with improved data deletion. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, iOS 14.3 and iPadOS 14.3, tvOS 14.3. A user may be unable to fully delete browsing history. |
|
15 |
CVE-2020-15358 |
787 |
|
Overflow |
2020-06-27 |
2022-05-12 |
2.1 |
None |
Local |
Low |
Not required |
None |
None |
Partial |
|
In SQLite before 3.32.3, select.c mishandles query-flattener optimization, leading to a multiSelectOrderBy heap overflow because of misuse of transitive properties for constant propagation. |
|
16 |
CVE-2020-13631 |
|
|
|
2020-05-27 |
2022-05-13 |
2.1 |
None |
Local |
Low |
Not required |
None |
Partial |
None |
|
SQLite before 3.32.0 allows a virtual table to be renamed to the name of one of its shadow tables, related to alter.c and build.c. |
|
17 |
CVE-2020-13434 |
190 |
|
Overflow |
2020-05-24 |
2022-05-12 |
2.1 |
None |
Local |
Low |
Not required |
None |
None |
Partial |
|
SQLite through 3.32.0 has an integer overflow in sqlite3_str_vappendf in printf.c. |
|
18 |
CVE-2020-10002 |
|
|
|
2020-12-08 |
2020-12-15 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 14.2 and iPadOS 14.2, iCloud for Windows 11.5, tvOS 14.2, iTunes 12.11 for Windows. A local user may be able to read arbitrary files. |
|
19 |
CVE-2020-9979 |
|
|
|
2020-10-27 |
2022-05-24 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
A trust issue was addressed by removing a legacy API. This issue is fixed in iOS 14.0 and iPadOS 14.0, tvOS 14.0. An attacker may be able to misuse a trust relationship to download malicious content. |
|
20 |
CVE-2020-9772 |
|
|
|
2020-10-22 |
2020-10-28 |
2.1 |
None |
Local |
Low |
Not required |
None |
Partial |
None |
|
A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. A sandboxed process may be able to circumvent sandbox restrictions. |
|
21 |
CVE-2020-3918 |
|
|
|
2020-10-22 |
2020-10-29 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
An access issue was addressed with additional sandbox restrictions. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. A local user may be able to view sensitive user information. |
|
22 |
CVE-2020-3917 |
668 |
|
|
2020-04-01 |
2020-04-03 |
2.1 |
None |
Local |
Low |
Not required |
None |
Partial |
None |
|
This issue was addressed with a new entitlement. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, watchOS 6.2. An application may be able to use an SSH client provided by private frameworks. |
|
23 |
CVE-2020-3894 |
362 |
|
|
2020-04-01 |
2022-06-02 |
2.6 |
None |
Remote |
High |
Not required |
Partial |
None |
None |
|
A race condition was addressed with additional validation. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. An application may be able to read restricted memory. |
|
24 |
CVE-2020-3836 |
119 |
|
Overflow |
2020-02-27 |
2021-07-21 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
An access issue was addressed with improved memory management. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. A malicious application may be able to determine kernel memory layout. |
|
25 |
CVE-2019-8809 |
|
|
|
2020-10-27 |
2020-10-30 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
A validation issue was addressed with improved logic. This issue is fixed in macOS Catalina 10.15, iOS 13.1 and iPadOS 13.1, tvOS 13, watchOS 6, iOS 13. A local app may be able to read a persistent account identifier. |
|
26 |
CVE-2019-8799 |
922 |
|
|
2020-10-27 |
2021-07-21 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
This issue was resolved by replacing device names with a random identifier. This issue is fixed in iOS 13.1 and iPadOS 13.1, macOS Catalina 10.15, watchOS 6, tvOS 13. An attacker in physical proximity may be able to passively observe device names in AWDL communications. |
|
27 |
CVE-2019-8798 |
119 |
|
Exec Code Overflow Mem. Corr. |
2019-12-18 |
2021-07-21 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, macOS Catalina 10.15.1, tvOS 13.2, watchOS 6.1. An application may be able to execute arbitrary code with system privileges. |
|
28 |
CVE-2019-8704 |
287 |
|
+Info |
2019-12-18 |
2019-12-20 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
An authentication issue was addressed with improved state management. This issue is fixed in tvOS 13. A local user may be able to leak sensitive user information. |
|
29 |
CVE-2019-8702 |
668 |
|
|
2021-12-23 |
2022-01-05 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
This issue was addressed with a new entitlement. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra, iOS 12.4, tvOS 12.4. A local user may be able to read a persistent account identifier. |
|
30 |
CVE-2019-8568 |
59 |
|
|
2019-12-18 |
2019-12-20 |
2.1 |
None |
Local |
Low |
Not required |
None |
Partial |
None |
|
A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1. A local user may be able to modify protected parts of the file system. |
|
31 |
CVE-2019-8510 |
125 |
|
|
2019-12-18 |
2019-12-22 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to determine kernel memory layout. |
|
32 |
CVE-2019-7293 |
787 |
|
Mem. Corr. |
2019-12-18 |
2020-08-24 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A local user may be able to read kernel memory. |
|
33 |
CVE-2019-6207 |
125 |
|
|
2019-12-18 |
2019-12-22 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to determine kernel memory layout. |
|
34 |
CVE-2018-4448 |
|
|
|
2020-10-27 |
2020-10-30 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
A memory initialization issue was addressed with improved memory handling. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra, iOS 12.1.1, watchOS 5.1.2, macOS Mojave 10.14.2, Security Update 2018-003 High Sierra, Security Update 2018-006 Sierra, tvOS 12.1.1. A local user may be able to read kernel memory. |
|
35 |
CVE-2018-4395 |
20 |
|
|
2019-04-03 |
2019-04-08 |
2.1 |
None |
Local |
Low |
Not required |
None |
None |
Partial |
|
This issue was addressed with improved checks. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. |
|
36 |
CVE-2018-4313 |
20 |
|
|
2019-04-03 |
2019-04-04 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
A consistency issue existed in the handling of application snapshots. The issue was addressed with improved handling of message deletions. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5. |
|
37 |
CVE-2017-7006 |
203 |
|
Bypass +Info |
2017-07-20 |
2019-10-03 |
2.6 |
None |
Remote |
High |
Not required |
Partial |
None |
None |
|
An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to conduct a timing side-channel attack to bypass the Same Origin Policy and obtain sensitive information via a crafted web site that uses SVG filters. |
|
38 |
CVE-2017-2390 |
59 |
|
|
2017-04-02 |
2019-10-03 |
2.1 |
None |
Local |
Low |
Not required |
None |
Partial |
None |
|
An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS before 10.12.4 is affected. tvOS before 10.2 is affected. watchOS before 3.2 is affected. The issue involves symlink mishandling in the "libarchive" component. It allows local users to change arbitrary directory permissions via unspecified vectors. |
|
39 |
CVE-2015-8035 |
399 |
|
DoS |
2015-11-18 |
2019-03-08 |
2.6 |
None |
Remote |
High |
Not required |
None |
None |
Partial |
|
The xz_decomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service (process hang) via crafted XML data. |
|
40 |
CVE-2015-7046 |
200 |
|
Bypass +Info |
2015-12-11 |
2019-03-08 |
2.6 |
None |
Remote |
High |
Not required |
Partial |
None |
None |
|
The Sandbox feature in xnu in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 does not properly implement privilege separation, which allows attackers to bypass the ASLR protection mechanism via a crafted app with root privileges. |
|
41 |
CVE-2014-4455 |
264 |
|
Bypass |
2014-11-18 |
2019-03-08 |
2.1 |
None |
Local |
Low |
Not required |
None |
Partial |
None |
|
dyld in Apple iOS before 8.1.1 and Apple TV before 7.0.2 does not properly handle overlapping segments in Mach-O executable files, which allows local users to bypass intended code-signing restrictions via a crafted file. |
|
42 |
CVE-2014-4364 |
310 |
|
|
2014-09-18 |
2019-03-08 |
2.9 |
None |
Local Network |
Medium |
Not required |
Partial |
None |
None |
|
The 802.1X subsystem in Apple iOS before 8 and Apple TV before 7 does not require strong authentication methods, which allows remote attackers to calculate credentials by offering LEAP authentication from a crafted Wi-Fi AP and then performing a cryptographic attack against the MS-CHAPv1 hash. |
|
43 |
CVE-2014-4357 |
200 |
|
+Info |
2014-09-18 |
2019-03-08 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
Accounts Framework in Apple iOS before 8 and Apple TV before 7 allows attackers to obtain sensitive information by reading log data that was not intended to be present in a log. |
|
44 |
CVE-2014-1279 |
264 |
|
+Info |
2014-03-14 |
2019-03-08 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
Apple TV before 6.1 does not properly restrict logging, which allows local users to obtain sensitive information by reading log data. |
|
45 |
CVE-2013-0978 |
200 |
|
Bypass +Info |
2013-03-20 |
2019-09-26 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
The ARM prefetch abort handler in the kernel in Apple iOS before 6.1.3 and Apple TV before 5.2.1 does not ensure that it has been invoked in an abort context, which makes it easier for local users to bypass the ASLR protection mechanism via crafted code. |
