Month | Quarter | Year |
---|---|---|
#26 | #18 | #18 |
CVE-ID | CWE-ID | Type | Score |
---|---|---|---|
CVE-2018-4310 | CWE-284 | Improper Access Control | 10.0 |
An access issue was addressed with additional sandbox restrictions. This issue affected versions prior to iOS 12, macOS Mojave 10.14. |
|||
CVE-2018-4309 | CWE-79 | Cross-Site Scripting (XSS) | 6.1 |
A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7. |
|||
CVE-2018-4307 | CWE-20 | Input Validation | 4.3 |
A logic issue was addressed with improved state management. This issue affected versions prior to iOS 12, Safari 12. |
|||
CVE-2018-4306 | CWE-416 | Use After Free | 8.8 |
A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7. |
|||
CVE-2018-4305 | CWE-20 | Input Validation | 6.5 |
An input validation issue was addressed with improved input validation. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5. |
|||
CVE-2018-4304 | CWE-20 | Input Validation | 5.0 |
A denial of service issue was addressed with improved validation. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. |
|||
CVE-2018-4303 | CWE-20 | Input Validation | 7.8 |
An input validation issue was addressed with improved input validation. This issue affected versions prior to macOS Mojave 10.14, iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2. |
|||
CVE-2018-4299 | CWE-119 | Buffer Errors | 8.8 |
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7. |
|||
CVE-2018-4298 | CWE-275 | Permission Issues | 9.8 |
In macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, a permissions issue existed in Remote Management. This issue was addressed through improved permission validation. |
|||
CVE-2018-4293 | CWE-20 | Input Validation | 5.3 |
A cookie management issue was addressed with improved checks. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2, iTunes 12.8 for Windows, iCloud for Windows 7.6. |