Apple

iPhone OS

4014 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.6

CVE-2024-40867

  • EPSS 1.6%
  • Veröffentlicht 28.10.2024 21:15:04
  • Zuletzt bearbeitet 03.11.2025 22:17:11

A custom URL scheme handling issue was addressed with improved input validation. This issue is fixed in iOS 18.1 and iPadOS 18.1. A remote attacker may be able to break out of Web Content sandbox.

5.5

CVE-2024-44185

  • EPSS 0.04%
  • Veröffentlicht 24.10.2024 17:15:16
  • Zuletzt bearbeitet 02.04.2026 19:18:16

The issue was addressed with improved checks. This issue is fixed in Safari 17.6, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, tvOS 17.6, visionOS 1.3, watchOS 10.6. Processing maliciously crafted web content may lead to an unexpected process crash.

5.5

CVE-2024-44205

  • EPSS 0.1%
  • Veröffentlicht 24.10.2024 17:15:16
  • Zuletzt bearbeitet 02.04.2026 19:18:20

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8. A sandboxed app may be ...

9.3

CVE-2024-44206

  • EPSS 0.54%
  • Veröffentlicht 24.10.2024 17:15:16
  • Zuletzt bearbeitet 02.04.2026 19:18:20

An issue in the handling of URL protocols was addressed with improved logic. This issue is fixed in Safari 17.6, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, tvOS 17.6, visionOS 1.3, watchOS 10.6. A user may be able to bypass some web content restric...

5.5

CVE-2024-44204

  • EPSS 1.96%
  • Veröffentlicht 04.10.2024 00:15:02
  • Zuletzt bearbeitet 03.11.2025 22:18:25

A logic issue was addressed with improved validation. This issue is fixed in iOS 18.0.1 and iPadOS 18.0.1. A user's saved passwords may be read aloud by VoiceOver.

4.3

CVE-2024-44207

  • EPSS 7.52%
  • Veröffentlicht 04.10.2024 00:15:02
  • Zuletzt bearbeitet 03.11.2025 22:18:25

This issue was addressed with improved checks. This issue is fixed in iOS 18.0.1 and iPadOS 18.0.1. Audio messages in Messages may be able to capture a few seconds of audio before the microphone indicator is activated.

6.5

CVE-2024-44187

  • EPSS 0.55%
  • Veröffentlicht 17.09.2024 00:15:52
  • Zuletzt bearbeitet 02.04.2026 19:18:17

A cross-origin issue existed with "iframe" elements. This was addressed with improved tracking of security origins. This issue is fixed in Safari 18, iOS 18 and iPadOS 18, macOS Sequoia 15, tvOS 18, visionOS 2, watchOS 11. A malicious website may exf...

5.5

CVE-2024-44191

  • EPSS 0.04%
  • Veröffentlicht 17.09.2024 00:15:52
  • Zuletzt bearbeitet 02.04.2026 19:18:18

This issue was addressed through improved state management. This issue is fixed in Xcode 16, iOS 17.7 and iPadOS 17.7, iOS 18 and iPadOS 18, macOS Sequoia 15, tvOS 18, visionOS 2, watchOS 11. An app may gain unauthorized access to Bluetooth.

5.5

CVE-2024-44198

  • EPSS 0.04%
  • Veröffentlicht 17.09.2024 00:15:52
  • Zuletzt bearbeitet 02.04.2026 19:18:19

An integer overflow was addressed through improved input validation. This issue is fixed in iOS 18 and iPadOS 18, macOS Sequoia 15, tvOS 18, visionOS 2, watchOS 11. Processing maliciously crafted web content may lead to an unexpected process crash.

5.3

CVE-2024-44202

  • EPSS 0.48%
  • Veröffentlicht 17.09.2024 00:15:52
  • Zuletzt bearbeitet 02.04.2026 19:18:20

An authentication issue was addressed with improved state management. This issue is fixed in Safari 18, iOS 18 and iPadOS 18. Private Browsing tabs may be accessed without authentication.