Apple Watch - 6 CVEs (Page 1/1)

About “Apple Watch”

A curated feed of “Apple Watch”-related CVEs appears below. We currently track 6 CVEs for this tag (all time). In the last 365 days, 1 were published. Average CVSS is 5.1 (all time; 4.6 over 365d), and 33% are rated High/Critical (all time). Top CWEs (last 365 days): CWE-863 - Incorrect Authorization.

In our taxonomy this topic maps to a LOW impact class. Mobile OS and devices protect account and app access. Update OS, enforce MDM policies, disable sideloading, and restrict developer options. Use the filters below to sort by CVSS, risk and CWE. Each detail page highlights vendor advisories and mitigation tips.

Support & lifecycle: apple-watch

This table shows recent release cycles and their projected end-of-life. Data source: endoflife.date.

Cycle	Release	Latest	EOL
series-11	2025-09-19	-	-
se-3	2025-09-19	-	-
ultra-3	2025-09-19	-	-
series-10	2024-09-20	-	-
ultra-2	2023-09-22	-	-
series-9	2023-09-22	-	-
ultra-1	2022-09-23	-	-
series-8	2022-09-16	-	-
se-2	2022-09-16	-	-
series-7	2021-10-15	-	-
series-6	2020-09-18	-	-
se-1	2020-09-18	-	2024-09-16 Expired
series-5	2019-09-20	-	2024-09-16 Expired
series-4	2018-09-21	-	2024-09-16 Expired
series-3	2017-09-22	-	2022-09-13 Expired
series-2	2016-09-16	-	2020-09-15 Expired
series-1	2016-09-12	-	2020-09-15 Expired
1	2015-04-24	-	2018-09-17 Expired

Maintained Soon (≤ 180 days) Expired

Subscribe lifecycle: RSS (expired) · ICS

Subscribe CVEs: RSS for “Apple Watch” · RSS (High+Critical only)

CVEs tagged with this topic. Filters apply to the whole list (loaded from JSON).

CVSS ≥ 0.0

2025-11-04

Medium

CVE-2025-43459

An authentication issue was addressed with improved state management. This issue is fixed in watchOS 26.1. An attacker with physical access to a locked Apple Watch may be able to view Live Voicemail.

CVSS: 4.6 CWE: CWE-863 - Incorrect Authorization View on NVD

2024-10-24

High

CVE-2024-10327

A vulnerability in Okta Verify for iOS versions 9.25.1 (beta) and 9.27.0 (including beta) allows push notification responses through the iOS ContextExtension feature allowing the authentication to pr…

CVSS: 8.1 CWE: CWE-287 - Improper Authentication View on NVD

2023-09-27

Medium

CVE-2023-40418

An authentication issue was addressed with improved state management. This issue is fixed in watchOS 10. An Apple Watch Ultra may not lock when using the Depth app.

CVSS: 5.5 CWE: N/A View on NVD

2023-06-23

Low

CVE-2023-32417

This issue was addressed by restricting options offered on a locked device. This issue is fixed in watchOS 9.5. An attacker with physical access to a locked Apple Watch may be able to view user photo…

CVSS: 2.4 CWE: N/A View on NVD

2023-04-10

Low

CVE-2022-46717

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 16.2 and iPadOS 16.2. A user with physical access to a locked Apple Watch may be able to view user photos via access…

CVSS: 2.4 CWE: N/A View on NVD

2017-12-25

High

CVE-2017-13903

An issue was discovered in certain Apple products. iOS before 11.2.1 is affected. tvOS before 11.2.1 is affected. The issue involves the "HomeKit" component. It allows remote attackers to modify the…

CVSS: 7.5 CWE: N/A View on NVD