Latest CVE Feed
-
2.4
LOWCVE-2019-8682
The issue was addressed with improved UI handling. This issue is fixed in iOS 12.4, watchOS 5.3. A user may inadvertently complete an in-app purchase while on the lock screen.... Read more
- EPSS Score: %0.04
- Published: Dec. 18, 2019
- Modified: Nov. 21, 2024
-
2.4
LOWCVE-2018-4238
An issue was discovered in certain Apple products. iOS before 11.4 is affected. The issue involves the "Siri" component. It allows physically proximate attackers to bypass the lock-screen protection mechanism and enable Siri.... Read more
Affected Products : iphone_os- EPSS Score: %0.06
- Published: Jun. 08, 2018
- Modified: Nov. 21, 2024
-
2.4
LOWCVE-2017-2397
An issue was discovered in certain Apple products. iOS before 10.3 is affected. The issue involves the "Accounts" component. It allows physically proximate attackers to discover an Apple ID by reading an iCloud authentication prompt on the lock screen.... Read more
Affected Products : iphone_os- EPSS Score: %0.07
- Published: Apr. 02, 2017
- Modified: Apr. 20, 2025
-
2.4
LOWCVE-2017-13844
An issue was discovered in certain Apple products. iOS before 11.1 is affected. The issue involves the "Messages" component. It allows physically proximate attackers to view arbitrary photos via a Reply With Message action in the lock-screen state.... Read more
Affected Products : iphone_os- EPSS Score: %0.08
- Published: Nov. 13, 2017
- Modified: Apr. 20, 2025
-
2.4
LOWCVE-2018-4430
A lock screen issue allowed access to contacts on a locked device. This issue was addressed with improved state management. This issue affected versions prior to iOS 12.1.1.... Read more
Affected Products : iphone_os- EPSS Score: %0.06
- Published: Apr. 03, 2019
- Modified: Nov. 21, 2024
-
2.4
LOWCVE-2020-3828
A lock screen issue allowed access to contacts on a locked device. This issue was addressed with improved state management. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1. A person with physical access to an iOS device may be able to access contacts ... Read more
- EPSS Score: %0.15
- Published: Feb. 27, 2020
- Modified: Nov. 21, 2024
-
2.4
LOWCVE-2018-4123
An issue was discovered in certain Apple products. iOS before 11.3 is affected. The issue involves alarm and timer handling in the "Clock" component. It allows physically proximate attackers to discover the iTunes e-mail address.... Read more
Affected Products : iphone_os- EPSS Score: %0.08
- Published: Apr. 03, 2018
- Modified: Nov. 21, 2024
-
2.4
LOWCVE-2022-46717
A logic issue was addressed with improved restrictions. This issue is fixed in iOS 16.2 and iPadOS 16.2. A user with physical access to a locked Apple Watch may be able to view user photos via accessibility features... Read more
- EPSS Score: %0.09
- Published: Apr. 10, 2023
- Modified: Feb. 11, 2025
-
2.4
LOWCVE-2024-27835
This issue was addressed through improved state management. This issue is fixed in iOS 17.5 and iPadOS 17.5. An attacker with physical access to an iOS device may be able to access notes from the lock screen.... Read more
- Published: May. 14, 2024
- Modified: Dec. 12, 2024
-
2.4
LOWCVE-2024-27803
A permissions issue was addressed with improved validation. This issue is fixed in iOS 17.5 and iPadOS 17.5. An attacker with physical access may be able to share items from the lock screen.... Read more
- Published: May. 14, 2024
- Modified: Mar. 25, 2025
-
2.4
LOWCVE-2023-32365
The issue was addressed with improved checks. This issue is fixed in iOS 15.7.6 and iPadOS 15.7.6, iOS 16.5 and iPadOS 16.5. Shake-to-undo may allow a deleted photo to be re-surfaced without authentication.... Read more
- EPSS Score: %0.04
- Published: Jun. 23, 2023
- Modified: Nov. 21, 2024
-
2.4
LOWCVE-2019-8799
This issue was resolved by replacing device names with a random identifier. This issue is fixed in iOS 13.1 and iPadOS 13.1, macOS Catalina 10.15, watchOS 6, tvOS 13. An attacker in physical proximity may be able to passively observe device names in AWDL ... Read more
- EPSS Score: %0.07
- Published: Oct. 27, 2020
- Modified: Nov. 21, 2024
-
2.4
LOWCVE-2020-3891
A logic issue was addressed with improved state management. This issue is fixed in iOS 13.4 and iPadOS 13.4, watchOS 6.2. A person with physical access to a locked iOS device may be able to respond to messages even when replies are disabled.... Read more
- EPSS Score: %0.05
- Published: Apr. 01, 2020
- Modified: Nov. 21, 2024
-
2.4
LOWCVE-2023-40529
This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 17 and iPadOS 17. A person with physical access to a device may be able to use VoiceOver to access private calendar information.... Read more
- EPSS Score: %0.12
- Published: Jan. 10, 2024
- Modified: Jun. 03, 2025
-
2.4
LOWCVE-2023-32417
This issue was addressed by restricting options offered on a locked device. This issue is fixed in watchOS 9.5. An attacker with physical access to a locked Apple Watch may be able to view user photos or contacts via accessibility features.... Read more
Affected Products : watchos- EPSS Score: %0.07
- Published: Jun. 23, 2023
- Modified: Nov. 21, 2024
-
2.4
LOWCVE-2023-32394
The issue was addressed with improved checks. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, tvOS 16.5, macOS Ventura 13.4. A person with physical access to a device may be able to view contact information from the lock screen.... Read more
- EPSS Score: %0.05
- Published: Jun. 23, 2023
- Modified: Nov. 21, 2024
-
2.4
LOWCVE-2023-32390
The issue was addressed with improved checks. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, macOS Ventura 13.4. Photos belonging to the Hidden Photos Album could be viewed without authentication through Visual Lookup.... Read more
- EPSS Score: %0.07
- Published: Jun. 23, 2023
- Modified: Dec. 05, 2024
-
2.4
LOWCVE-2017-7407
The ourWriteOut function in tool_writeout.c in curl 7.53.1 might allow physically proximate attackers to obtain sensitive information from process memory in opportunistic circumstances by reading a workstation screen during use of a --write-out argument e... Read more
Affected Products : curl- EPSS Score: %0.20
- Published: Apr. 03, 2017
- Modified: Apr. 20, 2025
-
2.4
LOWCVE-2025-40570
A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All versions < V10.0), SIPROTEC 5 6MD85 (CP300) (All versions >= V7.80 < V10.0), SIPROTEC 5 6MD86 (CP300) (All versions >= V7.80 < V10.0), SIPROTEC 5 6MD89 (CP300) (All versions >= V7.80 < V... Read more
Affected Products :- Published: Aug. 12, 2025
- Modified: Aug. 12, 2025
- Vuln Type: Denial of Service
-
2.4
LOWCVE-2025-47274
ToolHive is a utility designed to simplify the deployment and management of Model Context Protocol (MCP) servers. Due to the ordering of code used to start an MCP server container, versions of ToolHive prior to 0.0.33 inadvertently store secrets in the ru... Read more
Affected Products :- Published: May. 12, 2025
- Modified: May. 12, 2025
- Vuln Type: Information Disclosure