105 Total CVEs
86 AI Analyzed
11 CISA KEV
45 Critical
All Vendors
Showing 1-105 of 105 CVEs
CVE-2026-7957
8.8
Apple Chrome on

Out of bounds write in Media in Google Chrome on Mac, iOS prior to 148

2026-05-07
CVE-2026-7361
8.8
Apple Chrome prior

Use after free in iOS in Google Chrome prior to 147

2026-04-30
CVE-2026-55666
Analyzed
9.3
Apple Rocket.Chat

Rocket.Chat contains an authentication bypass vulnerability in its Apple OAuth flow, allowing attackers to forge JWTs and perform account takeovers.

2026-06-25
CVE-2026-49269
Analyzed
8.6
Apple M1 GPU

Apple M1 GPUs retain register file data between compute shader dispatches from different processes

2026-06-25
CVE-2026-4711
Analyzed
9.8
Apple Firefox and Thunderbird

A use-after-free vulnerability in the Widget: Cocoa component of Mozilla products on macOS allows for remote code execution via malicious web interact...

2026-03-25
CVE-2026-43735
Analyzed
8.1
Apple Safari

The issue was addressed with improved checks

2026-07-01
CVE-2026-43731
Analyzed
8.8
Apple Safari

A use-after-free issue was addressed with improved memory management

2026-06-30
CVE-2026-43725
Analyzed
7.1
Apple Safari

The issue was addressed with improved input validation

2026-06-30
CVE-2026-43724
Analyzed
7.8
Apple iOS and iPadOS

The issue was addressed with improved input sanitization

2026-07-01
CVE-2026-43715
Analyzed
8.8
Apple Safari

A use-after-free issue was addressed with improved memory management

2026-06-30
CVE-2026-43705
Analyzed
8.8
Apple Safari

A type confusion issue was addressed with improved checks

2026-06-30
CVE-2026-43530
Analyzed
8.8
Apple OpenClaw

OpenClaw versions 2026

2026-05-06
CVE-2026-42090
Analyzed
9.6
Apple Multiple Products

Notesnook is a note-taking app focused on user privacy & ease of use. Prior to Notesnook Web/Desktop version 3.3.15 and prior to Notesnook iOS/Android...

2026-05-05
CVE-2026-34354
7.4
Apple and macOS

Akamai Guardicore Platform Agent (GPA) and Zero Trust Client on Linux and macOS allow TOCTOU-based local privilege escalation

2026-05-10
CVE-2026-34282
7.5
Apple Multiple Products

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking)

2026-04-22
CVE-2026-33631
Analyzed
8.7
Apple ClearanceKit for macOS

ClearanceKit intercepts file-system access events on macOS and enforces per-process access policies

2026-03-27
CVE-2026-31852
Analyzed
10
Apple App Store

The jellyfin-ios GitHub Actions workflow is vulnerable to arbitrary code execution via pull requests, potentially leading to full repository takeover...

2026-03-12
CVE-2026-28858
Analyzed
9.8
Apple iOS and iPadOS

A buffer overflow vulnerability in the kernel was addressed through improved bounds checking. Remote attackers may cause system termination or corrupt...

2026-03-26
CVE-2026-28403
Analyzed
7.6
Apple Multiple Products

Textream is a free macOS teleprompter app

2026-03-03
CVE-2026-24858
KEV Analyzed
9.8
Apple Multiple Products

An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.5, Forti...

2026-01-28
CVE-2026-23572
7.2
Apple Multiple Products

Improper access control in the TeamViewer Full and Host clients (Windows, macOS, Linux) prior version 15

2026-02-06
CVE-2026-22153
8.1
Apple FortiOS

An Authentication Bypass by Primary Weakness vulnerability [CWE-305] vulnerability in Fortinet FortiOS 7

2026-02-11
CVE-2026-22016
7.5
Apple Multiple Products

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP)

2026-04-22
CVE-2026-20700
KEV Analyzed
7.8
Apple is aware

A memory corruption issue was addressed with improved state management

2026-02-13
CVE-2026-14099
Analyzed
8.8
Apple Chrome for iOS

Use after free in Chrome for iOS in Google Chrome on iOS prior to 150

2026-07-02
CVE-2026-14067
Analyzed
8.8
Apple Chrome for iOS

Use after free in Chrome for iOS in Google Chrome on iOS prior to 150

2026-07-02
CVE-2026-13918
Analyzed
8.8
Apple Chrome for iOS

Use after free in Chrome for iOS in Google Chrome on iOS prior to 150

2026-07-02
CVE-2026-13915
Analyzed
8.8
Apple Chrome for iOS

Use after free in Chrome for iOS in Google Chrome on iOS prior to 150

2026-07-02
CVE-2026-13850
Analyzed
8.8
Apple Chrome for iOS

Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150

2026-07-02
CVE-2026-13777
Analyzed
8.8
Apple Chrome (iOS)

Insufficient validation of untrusted input in iOSWeb in Google Chrome on iOS prior to 150

2026-07-02
CVE-2026-11272
Analyzed
8.8
Apple Chrome on iOS

Insufficient validation of untrusted input in Reading List in Google Chrome on iOS prior to 149

2026-06-11
CVE-2026-10958
Analyzed
8.8
Apple Chrome

Use after free in Chrome for iOS in Google Chrome on iOS prior to 149

2026-06-05
CVE-2026-10952
Analyzed
8.8
Apple Chrome for iOS

Use after free in Chrome for iOS in Google Chrome on iOS prior to 149

2026-06-05
CVE-2026-10951
Analyzed
8.8
Apple Chrome on iOS

Use after free in Autofill in Google Chrome on iOS prior to 149

2026-06-06
CVE-2026-10896
Analyzed
8.8
Apple Chrome

Use after free in Chrome for iOS in Google Chrome on iOS prior to 149

2026-06-05
CVE-2026-10885
Analyzed
8.8
Apple Chrome for iOS

Use after free in Chrome for iOS in Google Chrome on iOS prior to 149

2026-06-05
CVE-2025-9200
Analyzed
7.5
Apple Multiple Products

The Blappsta Mobile App Plugin – Your native, mobile iPhone App and Android App plugin for WordPress is vulnerable to SQL Injection via the nh_ynaa_co...

2025-10-03
CVE-2025-59718
KEV Analyzed
9.8
Apple Multiple Products

A improper verification of cryptographic signature vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2.0 t...

2025-12-10
CVE-2025-59489
Analyzed
7.4
Apple Multiple Products

Unity Runtime before 2025-10-02 on Android, Windows, macOS, and Linux allows argument injection that can result in loading of library code from an uni...

2025-10-03
CVE-2025-58413
Analyzed
7.5
Apple Multiple Products

A stack-based buffer overflow in Fortinet FortiOS 7

2025-11-19
CVE-2025-58325
8.2
Apple Multiple Products

An Incorrect Provision of Specified Functionality vulnerability [CWE-684] in FortiOS 7

2025-10-14
CVE-2025-55314
Analyzed
7.8
Apple Multiple Products

An issue was discovered in Foxit PDF and Editor for Windows and macOS before 13

2025-12-12
CVE-2025-55313
Analyzed
7.8
Apple Multiple Products

An issue was discovered in Foxit PDF and Editor for Windows and macOS before 13

2025-12-12
CVE-2025-55310
Analyzed
7.3
Apple Multiple Products

An issue was discovered in Foxit PDF and Editor for Windows and macOS before 13

2025-12-12
CVE-2025-55177
KEV Analyzed
8
Apple Multiple Products

Incomplete authorization of linked device synchronization messages in WhatsApp for iOS prior to v2

2025-08-29
CVE-2025-55031
Analyzed
9.8
Apple Multiple Products

Malicious pages could use Firefox for iOS to pass FIDO: links to the OS and trigger the hybrid passkey transport. An attacker within Bluetooth range c...

2025-08-20
CVE-2025-55029
7.5
Apple Multiple Products

Malicious scripts could bypass the popup blocker to spam new tabs, potentially resulting in denial of service attacks This vulnerability affects Firef...

2025-08-20
CVE-2025-54145
Analyzed
9.1
Apple Multiple Products

The QR scanner could allow arbitrary websites to be opened if a user was tricked into scanning a malicious link that leveraged Firefox's open-text URL...

2025-08-20
CVE-2025-54143
Analyzed
9.8
Apple Multiple Products

Sandboxed iframes on webpages could potentially allow downloads to the device, bypassing the expected sandbox restrictions declared on the parent page...

2025-08-20
CVE-2025-53844
Analyzed
8.8
Apple FortiOS

A out-of-bounds write vulnerability in Fortinet FortiOS 7

2026-05-13
CVE-2025-53843
Analyzed
7.5
Apple Multiple Products

A stack-based buffer overflow in Fortinet FortiOS 7

2025-11-19
CVE-2025-53599
Analyzed
9.8
Apple Multiple Products

Whale browser for iOS before 3.9.1.4206 allow an attacker to execute malicious scripts in the browser via a crafted javascript scheme.

2025-07-08
CVE-2025-50902
8.8
Apple Multiple Products

Cross Site Request Forgery (CSRF) vulnerability in old-peanut Open-Shop (aka old-peanut/wechat_applet__open_source) thru 1

2025-08-21
CVE-2025-50053
Analyzed
7.1
Apple Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in nebelhorn Blappsta Mobile App Plugin & Your nati...

2026-01-01
CVE-2025-43529
KEV Analyzed
9.5
Apple Multiple Products

Apple Multiple Products Use-After-Free WebKit Vulnerability - Active in CISA KEV catalog.

2025-12-16
CVE-2025-43520
KEV
9.5
Apple Multiple Products

Apple Multiple Products Classic Buffer Overflow Vulnerability - Active in CISA KEV catalog.

2026-03-21
CVE-2025-43510
KEV
9.5
Apple Multiple Products

Apple Multiple Products Improper Locking Vulnerability - Active in CISA KEV catalog.

2026-03-21
CVE-2025-43275
Analyzed
9.8
Apple Multiple Products

A race condition was addressed with additional validation. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An ap...

2025-07-30
CVE-2025-43273
Analyzed
9.1
Apple Multiple Products

A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.6. A sandboxed process may be able to...

2025-07-31
CVE-2025-43261
Analyzed
9.8
Apple Multiple Products

A logic issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be...

2025-07-31
CVE-2025-43253
Analyzed
9.8
Apple Multiple Products

This issue was addressed with improved input validation. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7. A malicious app may be able t...

2025-07-30
CVE-2025-43245
Analyzed
9.8
Apple Multiple Products

A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventu...

2025-07-30
CVE-2025-43244
Analyzed
9.8
Apple Multiple Products

A race condition was addressed with improved state handling. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An...

2025-07-30
CVE-2025-43243
Analyzed
9.8
Apple Multiple Products

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Ventura 13.7.7, macOS Sonoma 14.7.7....

2025-07-31
CVE-2025-43237
Analyzed
9.8
Apple Multiple Products

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Sequoia 15.6. An app may be able to cause unexp...

2025-07-30
CVE-2025-43234
Analyzed
9.8
Apple Multiple Products

Multiple memory corruption issues were addressed with improved input validation. This issue is fixed in watchOS 11.6, iOS 18.6 and iPadOS 18.6, tvOS 1...

2025-07-30
CVE-2025-43233
Analyzed
9.8
Apple Multiple Products

This issue was addressed with improved access restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. A ma...

2025-07-30
CVE-2025-43232
Analyzed
9.8
Apple Multiple Products

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Ventura 13.7.7, macOS Sonoma 14.7.7....

2025-07-30
CVE-2025-43222
Analyzed
9.8
Apple Multiple Products

A use-after-free issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.6, iPadOS 17.7.9, macOS Ventura 13.7.7,...

2025-07-31
CVE-2025-43220
Analyzed
9.8
Apple Multiple Products

This issue was addressed with improved validation of symlinks. This issue is fixed in iPadOS 17.7.9, macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ve...

2025-07-31
CVE-2025-43209
Analyzed
9.8
Apple Multiple Products

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in macOS Sequoia 15.6, iPadOS 17.7.9, iOS 18.6 and iPad...

2025-07-30
CVE-2025-43199
Analyzed
9.8
Apple Multiple Products

A permissions issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7....

2025-07-30
CVE-2025-43198
Analyzed
9.8
Apple Multiple Products

This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7. An app may be able to access...

2025-07-30
CVE-2025-43194
Analyzed
9.8
Apple Multiple Products

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able...

2025-07-30
CVE-2025-43193
Analyzed
9.8
Apple Multiple Products

The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.6, macOS Ventura 13.7.7, macOS Sonoma 14.7.7. An app ma...

2025-07-31
CVE-2025-43192
Analyzed
9.8
Apple Multiple Products

A configuration issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7. Account-driven User...

2025-07-31
CVE-2025-43189
Analyzed
9.8
Apple Multiple Products

This issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7. A malicious app may be able to...

2025-07-31
CVE-2025-43186
Analyzed
9.8
Apple Multiple Products

The issue was addressed with improved memory handling. This issue is fixed in watchOS 11.6, iOS 18.6 and iPadOS 18.6, tvOS 18.6, macOS Sequoia 15.6, m...

2025-07-30
CVE-2025-43184
Analyzed
9.8
Apple Multiple Products

This issue was addressed by adding an additional prompt for user consent. This issue is fixed in macOS Sonoma 14.7.7, macOS Ventura 13.7.7, macOS Sequ...

2025-07-31
CVE-2025-31281
Analyzed
9.1
Apple Multiple Products

An input validation issue was addressed with improved memory handling. This issue is fixed in visionOS 2.6, tvOS 18.6, macOS Sequoia 15.6, iOS 18.6 an...

2025-07-31
CVE-2025-31279
Analyzed
9.8
Apple Multiple Products

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.6, iPadOS 17.7.9, macOS Sonoma 14.7.7, macOS V...

2025-07-31
CVE-2025-31229
Analyzed
9.1
Apple Multiple Products

A logic issue was addressed with improved checks. This issue is fixed in iOS 18.6 and iPadOS 18.6. Passcode may be read aloud by VoiceOver.

2025-07-31
CVE-2025-30410
Analyzed
9.8
Apple Multiple Products

Sensitive data disclosure and manipulation due to missing authentication. The following products are affected: Acronis Cyber Protect Cloud Agent (Linu...

2026-02-20
CVE-2025-25249
Analyzed
8.1
Apple Multiple Products

A heap-based buffer overflow vulnerability in Fortinet FortiOS 7

2026-01-14
CVE-2025-24284
Analyzed
8.8
Apple macOS

This issue was addressed with improved checks to prevent unauthorized actions

2026-06-12
CVE-2025-15620
Analyzed
8.6
Apple Multiple Products

HiOS Switch Platform versions 09

2026-04-03
CVE-2025-14812
Analyzed
7.5
Apple Multiple Products

ArcSearch for iOS versions prior to 1

2025-12-20
CVE-2025-14022
Analyzed
7.7
Apple Multiple Products

LINE client for iOS prior to 15

2025-12-15
CVE-2025-11462
Analyzed
7.8
Apple Multiple Products

Improper Link Resolution Before File Access in the AWS VPN Client for macOS versions 1

2025-10-07
CVE-2025-10920
Analyzed
7.8
Apple Multiple Products

GIMP ICNS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

2025-10-29
CVE-2024-9126
Analyzed
7.5
Apple Multiple Products

Use after free in Internals in Google Chrome on iOS prior to 127

2025-11-15
CVE-2024-53735
Analyzed
7.1
Apple Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Corourke iPhone Webclip Manager allows Stored XS...

2026-01-06
CVE-2024-26009
Analyzed
8.1
Apple Multiple Products

An authentication bypass using an alternate path or channel [CWE-288] vulnerability in Fortinet FortiOS version 6

2025-08-12
CVE-2023-41974
KEV
9.5
Apple iOS and iPadOS

Apple iOS and iPadOS Use-After-Free Vulnerability - Active in CISA KEV catalog.

2026-03-06
CVE-2022-48503
KEV
9.5
Apple Multiple Products

Apple Multiple Products Unspecified Vulnerability - Active in CISA KEV catalog.

2025-10-20
CVE-2021-47827
Analyzed
7.5
Apple Multiple Products

WebSSH for iOS 14

2026-01-18
CVE-2021-30952
KEV
9.5
Apple Multiple Products

Apple Multiple Products Integer Overflow or Wraparound Vulnerability - Active in CISA KEV catalog.

2026-03-06
CVE-2020-37216
Analyzed
7.5
Apple HiOS

Hirschmann HiOS devices versions prior to 08

2026-04-04
CVE-2020-37175
7.5
Apple Multiple Products

P2PWIFICAM2 for iOS 10

2026-02-13
CVE-2020-37143
7.5
Apple Multiple Products

ProficySCADA for iOS 5

2026-02-06
CVE-2020-36995
Analyzed
7.5
Apple Multiple Products

Mocha Telnet Lite for iOS 4

2026-01-30
CVE-2019-6693
KEV Analyzed
9.5
Apple FortiOS

Fortinet FortiOS Use of Hard-Coded Credentials Vulnerability - Active in CISA KEV catalog.

2025-07-10
CVE-2019-25349
7.5
Apple Multiple Products

ScadaApp for iOS 1

2026-02-19
CVE-2019-25341
7.5
Apple Multiple Products

iNetTools for iOS 8

2026-02-14
CVE-2018-25236
Analyzed
9.8
Apple HiOS and HiSecOS (RSP, RSPE, RSPS, RSPL, MSP, EES, EESX, GRS, OS, RED, EAGLE)

An authentication bypass in Hirschmann HiOS and HiSecOS products allows unauthenticated remote attackers to gain administrative access via specially f...

2026-04-04