本ページは apple ipad_os に影響する公開済み CVE(NVD の CPE 経由で関連付け)を列挙します。各行に深刻度指標・概要・公開日が含まれます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2023-42977 | A path handling issue was addressed with improved validation. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to break out of its sandbox. | [email protected] | 7.8 | 0.15% | 2025-04-11 | 2025-04-29 |
| CVE-2025-24203 | The issue was addressed with improved checks. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.4, visionOS 2.4, watchOS 11.4. An app may be able to modify protected parts of the file system. | [email protected] | 5.0 | 0.02% | 2025-03-31 | 2026-04-02 |
| CVE-2024-44297 | The issue was addressed with improved bounds checks. This issue is fixed in iOS 17.7.1 and iPadOS 17.7.1, iOS 18.1 and iPadOS 18.1, macOS Sequoia 15.1, macOS Sonoma 14.7.1, macOS Ventura 13.7.1, tvOS 18.1, visionOS 2.1, watchOS 11.1. Processing a maliciously crafted message may lead to a denial-of-service. | [email protected] | 6.5 | 0.52% | 2024-10-28 | 2026-04-02 |
| CVE-2024-44139 | The issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18. An attacker with physical access may be able to access contacts from the lock screen. | [email protected] | 2.4 | 0.05% | 2024-09-17 | 2025-11-04 |
| CVE-2023-42974 | A race condition was addressed with improved state handling. This issue is fixed in macOS Monterey 12.7.2, macOS Ventura 13.6.3, iOS 17.2 and iPadOS 17.2, iOS 16.7.3 and iPadOS 16.7.3, macOS Sonoma 14.2. An app may be able to execute arbitrary code with kernel privileges. | [email protected] | 7.0 | 0.05% | 2024-03-28 | 2025-11-04 |
| CVE-2024-23297 | The issue was addressed with improved checks. This issue is fixed in iOS 17.4 and iPadOS 17.4, tvOS 17.4, watchOS 10.4. A malicious application may be able to access private information. | [email protected] | 5.5 | 0.05% | 2024-03-08 | 2026-04-02 |
| CVE-2024-23293 | This issue was addressed through improved state management. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, watchOS 10.4. An attacker with physical access may be able to use Siri to access sensitive user data. | [email protected] | 4.6 | 0.18% | 2024-03-08 | 2026-04-02 |
| CVE-2024-23280 | An injection issue was addressed with improved validation. This issue is fixed in Safari 17.4, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, watchOS 10.4. A maliciously crafted webpage may be able to fingerprint the user. | [email protected] | 6.5 | 0.67% | 2024-03-08 | 2026-04-02 |
| CVE-2024-23277 | The issue was addressed with improved checks. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4. An attacker in a privileged network position may be able to inject keystrokes by spoofing a keyboard. | [email protected] | 5.9 | 0.27% | 2024-03-08 | 2026-04-02 |
| CVE-2024-23273 | This issue was addressed through improved state management. This issue is fixed in Safari 17.4, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4. Private Browsing tabs may be accessed without authentication. | [email protected] | 4.3 | 0.22% | 2024-03-08 | 2026-04-02 |
| CVE-2024-23270 | The issue was addressed with improved memory handling. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5, tvOS 17.4. An app may be able to execute arbitrary code with kernel privileges. | [email protected] | 7.8 | 0.05% | 2024-03-08 | 2026-04-02 |
| CVE-2024-23255 | An authentication issue was addressed with improved state management. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4. Photos in the Hidden Photos Album may be viewed without authentication. | [email protected] | 2.4 | 0.15% | 2024-03-08 | 2026-04-02 |
| CVE-2024-23254 | The issue was addressed with improved UI handling. This issue is fixed in Safari 17.4, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, visionOS 1.1, watchOS 10.4. A malicious website may exfiltrate audio data cross-origin. | [email protected] | 6.5 | 0.43% | 2024-03-08 | 2026-04-02 |
| CVE-2024-23250 | An access issue was addressed with improved access restrictions. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, watchOS 10.4. An app may be able to access Bluetooth-connected microphones without user permission. | [email protected] | 5.5 | 0.01% | 2024-03-08 | 2026-04-02 |
| CVE-2024-23242 | A privacy issue was addressed by not logging contents of text fields. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4. An app may be able to view Mail data. | [email protected] | 3.3 | 0.03% | 2024-03-08 | 2026-04-02 |
| CVE-2024-23241 | This issue was addressed through improved state management. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4. An app may be able to leak sensitive user information. | [email protected] | 5.5 | 0.09% | 2024-03-08 | 2026-04-02 |
| CVE-2024-23240 | The issue was addressed with improved checks. This issue is fixed in iOS 17.4 and iPadOS 17.4. Shake-to-undo may allow a deleted photo to be re-surfaced without authentication. | [email protected] | 2.4 | 0.06% | 2024-03-08 | 2026-04-02 |
| CVE-2024-23239 | A race condition was addressed with improved state handling. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, watchOS 10.4. An app may be able to leak sensitive user information. | [email protected] | 4.7 | 0.06% | 2024-03-08 | 2026-04-02 |
| CVE-2024-23226 | The issue was addressed with improved memory handling. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, visionOS 1.1, watchOS 10.4. Processing web content may lead to arbitrary code execution. | [email protected] | 8.8 | 0.88% | 2024-03-08 | 2026-04-02 |
| CVE-2024-23220 | The issue was addressed with improved handling of caches. This issue is fixed in iOS 17.4 and iPadOS 17.4, visionOS 1.1. An app may be able to fingerprint the user. | [email protected] | 5.5 | 0.03% | 2024-03-08 | 2026-04-02 |