Apple

CVE-2014-4404 is a heap-based buffer overflow in Apple's IOHIDFamily affecting iOS before 8 and Apple TV before 7, classified under CWE-787. This vulnerability …

CVE-2015-1130 is listed on CISA's Known Exploited Vulnerabilities catalog as actively exploited in the wild, with a federal remediation deadline of 2022-08-10. …

CVE-2016-4655 is a memory information disclosure vulnerability in Apple iOS versions prior to 9.3.5, allowing attackers to obtain sensitive data via a crafted a…

CVE-2016-4656 is a memory corruption vulnerability in Apple iOS versions prior to 9.3.5 that allows attackers to execute arbitrary code in a privileged context …

CVE-2016-4657 is a memory corruption vulnerability in WebKit within Apple iOS versions prior to 9.3.5 that allows remote attackers to execute arbitrary code or …

CVE-2018-4344 is a memory corruption vulnerability (CWE-119) affecting Apple iOS versions prior to 12, macOS Mojave 10.14, tvOS 12, and watchOS 5. The issue inv…

CVE-2019-6223 is a logic issue in Apple's Group FaceTime handling affecting iOS and macOS, specifically fixed in iOS 12.1.4 and macOS Mojave 10.14.3 Supplementa…

CVE-2019-7286 is a memory corruption vulnerability (CWE-787) affecting Apple iOS and macOS, specifically fixed in iOS 12.1.4 and macOS Mojave 10.14.3 Supplement…

CVE-2019-7287 is a memory corruption vulnerability (CWE-787) in Apple iOS that allows an application to execute arbitrary code with kernel privileges. The issue…

CVE-2019-8506 is a memory corruption vulnerability classified as CWE-843 (Type Confusion) affecting Apple iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes …

CVE-2019-8526 is a memory corruption vulnerability (CWE-416) in Apple macOS, specifically affecting versions prior to macOS Mojave 10.14.4, involving a use-afte…

CVE-2019-8605 is a memory corruption vulnerability (CWE-416) affecting Apple iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, and watchOS 5.2.1, allowing malicious ap…

CVE-2020-27930 is a memory corruption vulnerability (CWE-787) affecting multiple Apple products including macOS, iOS, and watchOS, where processing a maliciousl…

CVE-2020-27932 is a HIGH severity vulnerability (CVSS 7.8) in Apple's macOS, iOS, and watchOS operating systems, classified as a type confusion issue (CWE-843) …

CVE-2020-27950 is a memory initialization vulnerability (CWE-665) affecting multiple Apple products including macOS, iOS, and watchOS, allowing a malicious appl…

CVE-2020-3837 is a memory corruption vulnerability (CWE-787) affecting Apple iOS, iPadOS, macOS, tvOS, and watchOS, allowing arbitrary code execution with kerne…

CVE-2020-9818 is an actively exploited vulnerability in Apple iOS, iPadOS, and watchOS, listed on CISA's Known Exploited Vulnerabilities catalog with a federal …

CVE-2020-9819 is a memory corruption vulnerability (CWE-787) affecting Apple iOS, iPadOS, and watchOS, where processing a maliciously crafted mail message can l…

CVE-2020-9859 is a memory corruption vulnerability affecting Apple iOS, iPadOS, macOS, tvOS, and watchOS, allowing an application to execute arbitrary code with…

CVE-2020-9907 is a memory corruption vulnerability (CWE-787) affecting Apple iOS 13.6, iPadOS 13.6, and tvOS 13.4.8, allowing an application to execute arbitrar…

CVE-2020-9934 is a medium severity vulnerability (CVSS 5.5) in Apple iOS, iPadOS, and macOS related to improper handling of environment variables, allowing loca…

CVE-2021-1782 is a race condition vulnerability in Apple macOS, iOS, iPadOS, watchOS, and tvOS that allows a malicious application to elevate privileges. The is…

CVE-2021-1789 is a HIGH severity vulnerability (CVSS 8.8) in Apple products including macOS, iOS, iPadOS, tvOS, watchOS, and Safari, classified as a type confus…

CVE-2021-1870 is an actively exploited vulnerability affecting Apple iOS, iPadOS, and macOS, as listed on CISA's Known Exploited Vulnerabilities catalog. The vu…

CVE-2021-1871 is a critical remote code execution vulnerability in Apple's macOS, iOS, and iPadOS operating systems, classified as a logic issue with improved r…

CVE-2021-1879 is a universal cross-site scripting vulnerability in Apple iOS, iPadOS, and watchOS, classified under CWE-79. It stems from improved management of…

CVE-2021-30657 is a logic issue in Apple macOS involving improved state management that allows a malicious application to bypass Gatekeeper checks. The vulnerab…

CVE-2021-30661 is a memory corruption vulnerability (use-after-free) affecting Apple Safari and iOS/iPadOS/macOS/tvOS/watchOS platforms, allowing arbitrary code…

CVE-2021-30663 is a HIGH severity integer overflow vulnerability (CWE-190) affecting Apple products including iOS, iPadOS, tvOS, Safari, and macOS Big Sur. The …

CVE-2021-30665 is a memory corruption vulnerability (CWE-787) affecting Apple products including watchOS, iOS, iPadOS, tvOS, and macOS, where processing malicio…

CVE-2021-30666 is an actively exploited vulnerability in Apple iOS, listed on CISA's Known Exploited Vulnerabilities catalog with a federal remediation deadline…

CVE-2021-30713 is a permissions issue in Apple macOS Big Sur prior to version 11.4 that allows a malicious application to bypass Privacy preferences. The vulner…

CVE-2021-30761 is a memory corruption vulnerability (CWE-787) in Apple iOS affecting versions prior to 12.5.4, allowing arbitrary code execution via maliciously…

CVE-2021-30762 is a memory corruption vulnerability in Apple iOS affecting versions prior to 12.5.4, classified as a use-after-free issue (CWE-416) that allows …

CVE-2021-30807 is listed on CISA's Known Exploited Vulnerabilities catalog as actively exploited in the wild, with a federal remediation deadline of November 17…

CVE-2021-30858 is an actively exploited vulnerability in Apple iOS, iPadOS, and macOS, listed on CISA's Known Exploited Vulnerabilities catalog with a federal r…

CVE-2021-30860 is a HIGH severity integer overflow vulnerability (CWE-190) affecting Apple products including macOS Catalina, Big Sur, iOS, iPadOS, and watchOS.…

CVE-2021-30869 is a high-severity type confusion vulnerability in Apple's iOS, iPadOS, and macOS operating systems, classified under CWE-843. It allows a malici…

CVE-2021-30883 is a memory corruption vulnerability (CWE-787) affecting Apple iOS, iPadOS, macOS, tvOS, and watchOS, allowing an application to execute arbitrar…

CVE-2021-30900 is a memory corruption vulnerability (CWE-787) affecting Apple iOS and iPadOS versions prior to 14.8.1 and 15.1, allowing malicious applications …

CVE-2021-30952 is an integer overflow vulnerability (CWE-190) affecting Apple products including tvOS 15.2, macOS Monterey 12.1, Safari 15.2, iOS 15.2, iPadOS 1…

CVE-2021-30983 is a buffer overflow vulnerability (CWE-120) affecting iOS and iPadOS, allowing an application to execute arbitrary code with kernel privileges. …

CVE-2021-31010 is a deserialization vulnerability (CWE-502) affecting Apple iOS, macOS, and watchOS, allowing a sandboxed process to circumvent sandbox restrict…

CVE-2022-22587 is a critical memory corruption vulnerability (CWE-787) affecting iOS 15.3, iPadOS 15.3, macOS Big Sur 11.6.3, and macOS Monterey 12.2. It allows…

CVE-2022-22620 is a high-severity memory corruption vulnerability (CWE-416) affecting Apple's macOS Monterey, iOS, iPadOS, and Safari, allowing arbitrary code e…

CVE-2022-22674 is a medium severity out-of-bounds read vulnerability (CWE-125) affecting Apple macOS, specifically versions Monterey 12.3.1, Security Update 202…

CVE-2022-22675 is a memory corruption vulnerability (CWE-787) in Apple's macOS, iOS, iPadOS, tvOS, and watchOS operating systems, allowing an application to exe…

CVE-2022-32893 is a high-severity memory corruption vulnerability (CWE-787) affecting Apple iOS, iPadOS, and macOS, specifically impacting versions prior to iOS…

CVE-2022-32894 is a high-severity memory corruption vulnerability (CWE-787) affecting iOS 15.6.1, iPadOS 15.6.1, and macOS Monterey 12.5.1, allowing arbitrary c…

CVE-2022-32917 is a memory corruption vulnerability (CWE-787) in Apple's iOS, iPadOS, and macOS operating systems that allows an application to execute arbitrar…

CVE-2022-42827 is a memory corruption vulnerability (CWE-787) in Apple iOS and iPadOS that allows an application to execute arbitrary code with kernel privilege…

CVE-2022-42856 is a type confusion vulnerability (CWE-843) in Apple's Safari and iOS components that allows arbitrary code execution via maliciously crafted web…

CVE-2022-48503 is listed on CISA's Known Exploited Vulnerabilities catalog as actively exploited in the wild, with a federal remediation deadline of November 10…

CVE-2022-48618 is a high-severity vulnerability (CVSS 7.0) affecting Apple macOS Ventura 13.1, watchOS 9.2, iOS 16.2, iPadOS 16.2, and tvOS 16.2, classified und…

CVE-2023-23529 is a high-severity memory corruption vulnerability (CWE-843) involving type confusion in Apple products including iOS, iPadOS, and macOS, which m…

CVE-2023-28204 is a memory corruption vulnerability (CWE-125) in Apple products including iOS, iPadOS, macOS, watchOS, tvOS, and Safari, allowing out-of-bounds …

CVE-2023-28205 is a high-severity memory corruption vulnerability (CWE-416) in Apple's Safari and iOS/iPadOS/macOS platforms, specifically affecting versions up…

CVE-2023-28206 is a high-severity memory corruption vulnerability (CWE-787) affecting Apple's macOS, iOS, and iPadOS platforms, allowing an app to execute arbit…

CVE-2023-32373 is a high-severity memory corruption vulnerability (CWE-416) affecting Apple products including iOS, iPadOS, macOS, watchOS, tvOS, and Safari. Th…

CVE-2023-32409 is a high-severity vulnerability (CVSS 8.6) in Apple products including iOS, iPadOS, macOS, watchOS, tvOS, and Safari, allowing a remote attacker…

CVE-2023-32434 is a high-severity integer overflow vulnerability (CWE-190) affecting multiple Apple products including iOS, iPadOS, macOS, and watchOS, allowing…

CVE-2023-32435 is a high-severity memory corruption vulnerability (CWE-787) affecting Apple products including macOS Ventura 13.3, Safari 16.4, and iOS/iPadOS 1…

CVE-2023-32439 is a type confusion vulnerability in Apple's iOS, iPadOS, and macOS operating systems, specifically affecting versions up to iOS/iPadOS 16.5.1, 1…

CVE-2023-37450 is listed on CISA's Known Exploited Vulnerabilities catalog as actively exploited in the wild, with a federal remediation deadline of August 3, 2…

CVE-2023-38606 is a vulnerability in Apple's macOS, iOS, iPadOS, tvOS, and watchOS operating systems that allows an app to modify sensitive kernel state due to …

CVE-2023-41061 is a high-severity validation issue in Apple's iOS, iPadOS, and watchOS platforms that allows arbitrary code execution via maliciously crafted at…

CVE-2023-41064 is a high-severity memory corruption vulnerability (CWE-120) in Apple's iOS, iPadOS, and macOS platforms, allowing arbitrary code execution via m…

CVE-2023-41974 is a memory corruption vulnerability (use-after-free) affecting Apple iOS and iPadOS, specifically impacting versions prior to iOS 17 and iPadOS …

CVE-2023-41990 is listed on CISA's Known Exploited Vulnerabilities catalog as actively exploited in the wild, with a federal remediation deadline of January 29,…

CVE-2023-41991 is a certificate validation issue (CWE-295) affecting Apple macOS Ventura, iOS, and iPadOS, allowing malicious apps to bypass signature validatio…

CVE-2023-41992 is a local privilege escalation vulnerability in Apple macOS and iOS/iPadOS products, classified under CWE-754 (Improper Check for Unusual or Exc…

CVE-2023-41993 is a high-severity vulnerability in Apple's macOS Sonoma 14 affecting web content processing, which may lead to arbitrary code execution. The iss…

CVE-2023-42824 is a local privilege escalation vulnerability in Apple iOS and iPadOS, fixed in versions 16.7.1 and later. The vulnerability allows a local attac…

CVE-2023-42916 is a medium severity out-of-bounds read vulnerability (CWE-125) affecting Apple iOS, iPadOS, macOS, and Safari, which may disclose sensitive info…

CVE-2023-42917 is a memory corruption vulnerability (CWE-787) in Apple products including iOS, iPadOS, macOS, and Safari, allowing arbitrary code execution via …

CVE-2023-43000 is a memory corruption vulnerability (use-after-free) affecting Apple products including macOS Ventura 13.5, iOS 16.6, iPadOS 16.6, Safari 16.6, …

CVE-2024-23222 is a HIGH severity (CVSS 8.8) memory corruption vulnerability classified as CWE-843 (Use After Free) affecting Apple Safari and iOS/iPadOS/macOS/…

CVE-2024-23225 is a memory corruption vulnerability (CWE-787) affecting Apple iOS, iPadOS, macOS, tvOS, visionOS, and watchOS, allowing an attacker with arbitra…

CVE-2024-23296 is a memory corruption vulnerability (CWE-787) affecting Apple iOS, iPadOS, macOS, tvOS, visionOS, and watchOS, allowing an attacker with arbitra…

CVE-2024-44308 is a high-severity vulnerability in Apple Safari and iOS/iPadOS/macOS/visionOS products that allows arbitrary code execution via maliciously craf…