Vulnerabilities > Apple > Iphone OS > 3.2.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-01-11 | CVE-2017-2411 | 7PK - Security Features vulnerability in Apple Iphone OS In iOS before 11.2, exchange rates were retrieved from HTTP rather than HTTPS. | 4.3 |
| 2019-01-11 | CVE-2017-13891 | Improper Input Validation vulnerability in Apple Iphone OS In iOS before 11.2, an inconsistent user interface issue was addressed through improved state management. | 4.3 |
| 2019-01-11 | CVE-2017-13888 | Incorrect Type Conversion or Cast vulnerability in Apple Iphone OS In iOS before 11.2, a type confusion issue was addressed with improved memory handling. | 5.0 |
| 2019-01-11 | CVE-2016-7576 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Iphone OS In iOS before 9.3.3, a memory corruption issue existed in the kernel. | 9.3 |
| 2019-01-11 | CVE-2016-4644 | Information Exposure vulnerability in Apple TV, Iphone OS and mac OS In iOS before 9.3.3, tvOS before 9.2.2, and OS X El Capitan before v10.11.6 and Security Update 2016-004, a downgrade issue existed with HTTP authentication credentials saved in Keychain. | 4.0 |
| 2019-01-11 | CVE-2016-4643 | Information Exposure vulnerability in Apple TV, Iphone OS and mac OS In iOS before 9.3.3, tvOS before 9.2.2, and OS X El Capitan before v10.11.6 and Security Update 2016-004, a validation issue existed in the parsing of 407 responses. | 4.0 |
| 2019-01-11 | CVE-2016-4642 | 7PK - Security Features vulnerability in Apple TV, Iphone OS and mac OS In iOS before 9.3.3, tvOS before 9.2.2, and OS X El Capitan before v10.11.6 and Security Update 2016-004, proxy authentication incorrectly reported HTTP proxies received credentials securely. | 4.3 |
| 2018-08-07 | CVE-2018-5383 | Improper Verification of Cryptographic Signature vulnerability in multiple products Bluetooth firmware or operating system software drivers in macOS versions before 10.13, High Sierra and iOS versions before 11.4, and Android versions before the 2018-06-05 patch may not sufficiently validate elliptic curve parameters used to generate public keys during a Diffie-Hellman key exchange, which may allow a remote attacker to obtain the encryption key used by the device. | 4.3 |
| 2018-06-08 | CVE-2018-4252 | Information Exposure vulnerability in Apple Iphone OS An issue was discovered in certain Apple products. | 2.1 |
| 2018-06-08 | CVE-2018-4250 | Improper Input Validation vulnerability in Apple Iphone OS An issue was discovered in certain Apple products. | 4.3 |