Vulnerabilities > Apple > Iphone OS > High

DATE CVE VULNERABILITY TITLE RISK
2019-12-11 CVE-2019-14899 A vulnerability was discovered in Linux, FreeBSD, OpenBSD, MacOS, iOS, and Android that allows a malicious access point, or an adjacent user, to determine if a connected user is using a VPN, make positive inferences about the websites they are visiting, and determine the correct sequence and acknowledgement numbers in use, allowing the bad actor to inject data into the TCP stream.
low complexity
freebsd linux openbsd apple
7.4
7.4
2019-08-14 CVE-2019-9506 Use of a Broken or Risky Cryptographic Algorithm vulnerability in multiple products
The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation. 		8.1
8.1
2019-04-03 CVE-2018-4465 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Iphone OS
A memory corruption issue was addressed with improved memory handling.
local
low complexity
apple CWE-119
7.8
7.8
2019-04-03 CVE-2018-4464 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
Multiple memory corruption issues were addressed with improved memory handling.
network
low complexity
apple CWE-119
8.8
8.8
2019-04-03 CVE-2018-4461 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
A memory corruption issue was addressed with improved input validation.
local
low complexity
apple CWE-119
7.8
7.8
2019-04-03 CVE-2018-4447 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
A memory corruption issue was addressed with improved state management.
local
low complexity
apple CWE-119
7.8
7.8
2019-04-03 CVE-2018-4443 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
A memory corruption issue was addressed with improved memory handling.
network
low complexity
apple CWE-119
8.8
8.8
2019-04-03 CVE-2018-4442 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
A memory corruption issue was addressed with improved memory handling.
network
low complexity
apple CWE-119
8.8
8.8
2019-04-03 CVE-2018-4441 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
A memory corruption issue was addressed with improved memory handling.
network
low complexity
apple CWE-119
8.8
8.8
2019-04-03 CVE-2018-4438 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
A logic issue existed resulting in memory corruption.
network
low complexity
apple CWE-119
8.8
8.8