apple

8,642 tracked vulnerabilities.

CVE-2024-27803 LOW
iPadOS < 17.5 - Unauthenticated Lock Screen Data Exposure via Shared Items
May 14, 2024
CVSS 2.4
EPSS 0.00
CVE-2024-27798 HIGH
macOS Sonoma <14.5 - Privilege Escalation
May 14, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-27796 HIGH
iOS <17.5- iPadOS <17.5 - Privilege Escalation
May 14, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-27793 HIGH
iTunes for Windows < 12.13.2 - Remote Code Execution via File Parsing
May 14, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-27789 MEDIUM
iPadOS < 16.7.8 - Unprotected User Data Exposure via Logic Issue
May 14, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-23236 MEDIUM
macOS < 14.5 - Unauthorized Arbitrary File Read
May 14, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-23229 MEDIUM
macOS < 12.7.5, < 13.6.5, < 14.4 - Unprotected User Data Exposure via Find My Data
May 14, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-4558 CRITICAL
Google Chrome < 124.0.6367.155 - Use-After-Free in ANGLE via Crafted HTML Page
May 07, 2024
CVSS 9.6
EPSS 0.04
CVE-2024-27791 HIGH
iPadOS < 16.7.5 - Memory Corruption in Coprocessor
Apr 24, 2024
CVSS 7.1
EPSS 0.00
CVE-2024-23271 MEDIUM
Safari < 17.3 - Improper Access Control
Apr 24, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-23228 LOW
iPadOS < 17.3 - Unauthorized Exposure of Locked Notes Content
Apr 24, 2024
CVSS 3.3
EPSS 0.00
CVE-2024-24795 MEDIUM
Apache HTTP Server 2.4.0-2.4.58 - HTTP Response Splitting via Malicious Response Headers
Apr 04, 2024
CVSS 6.3
EPSS 0.01
CVE-2024-28867 MEDIUM
Swift Prometheus 2.0.0-alpha.1 - Injection via Unsanitized Metric Labels
Mar 29, 2024
CVSS 5.9
EPSS 0.00
CVE-2024-2466 MEDIUM
libcurl - SSL/TLS Certificate Check Bypass
Mar 27, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-2398 HIGH
curl 7.44.0-8.6.0 - Memory Leak via HTTP/2 Server Push Header Limit Abort
Mar 27, 2024
CVSS 8.6
EPSS 0.02
CVE-2024-2379 MEDIUM
curl - Improper Certificate Validation in wolfSSL QUIC Connection
Mar 27, 2024
CVSS 6.3
EPSS 0.00
CVE-2024-2004 LOW
curl 7.85.0-8.6.0 - Protocol Filter Bypass via Empty Protocol Set
Mar 27, 2024
CVSS 3.5
EPSS 0.01
CVE-2024-23298 MEDIUM
Xcode < 15.3 - Gatekeeper Bypass via Logic Issue
Mar 15, 2024
CVSS 5.5
EPSS 0.01
CVE-2024-23300 HIGH
GarageBand < 10.4.11 - Use-After-Free via Maliciously Crafted File
Mar 12, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-23297 MEDIUM
iPadOS < 17.4 - Unauthorized Private Information Access
Mar 08, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-23295 MEDIUM
visionOS < 1.1 - Unauthenticated Unprotected Persona Access
Mar 08, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-23294 HIGH
macOS < 14.4 - Remote Code Execution
Mar 08, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-23293 MEDIUM
iPadOS < 17.4 - Unauthenticated Sensitive Data Exposure via Siri
Mar 08, 2024
CVSS 4.6
EPSS 0.00
CVE-2024-23292 LOW
iPadOS < 17.4 - Unauthorized Contact Information Exposure
Mar 08, 2024
CVSS 3.3
EPSS 0.00
CVE-2024-23291 LOW
iPadOS < 17.4 - Unprotected User Data Exposure via Accessibility Notification Logs
Mar 08, 2024
CVSS 3.3
EPSS 0.00
Products
iphone_os 4,014 mac_os_x 3,210 macos 2,696 tvos 2,004 ipados 1,897 watchos 1,778 safari 1,598 macOS 1,303 itunes 922 iOS and iPadOS 762 mac_os_x_server 655 visionOS 456 icloud 449 watchOS 434 visionos 433 tvOS 402 webkit 258 quicktime 246 Safari 180 iPadOS 131 xcode 95 ipad_os 89 cups 56 apple_tv 36 darwin_streaming_server 27 ipod_touch 18 Xcode 16 quicktime_streaming_server 16 airport_base_station_firmware 11 os_x_server 11
Quick Filters
Critical CVEs With Exploits In CISA KEV