Month | Quarter | Year |
---|---|---|
#26 | #18 | #18 |
CVE-ID | CWE-ID | Type | Score |
---|---|---|---|
CVE-2018-4290 | CWE-399 | Resource Management Errors | 5.9 |
A denial of service issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, watchOS 4.3.2. |
|||
CVE-2018-4284 | CWE-704 | Incorrect Type Conversion or Cast | 8.8 |
A type confusion issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6. |
|||
CVE-2018-4282 | CWE-125 | Out-of-bounds Read | 5.5 |
An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2. |
|||
CVE-2018-4280 | CWE-119 | Buffer Errors | 7.8 |
A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2. |
|||
CVE-2018-4278 | CWE-254 | Security Features | 4.3 |
In Safari before 11.1.2, iTunes before 12.8 for Windows, iOS before 11.4.1, tvOS before 11.4.1, iCloud for Windows before 7.6, sound fetched through audio elements may be exfiltrated cross-origin. This issue was addressed with improved audio taint tracking. |
|||
CVE-2018-4277 | CWE-20 | Input Validation | 7.5 |
In iOS before 11.4.1, watchOS before 4.3.2, tvOS before 11.4.1, Safari before 11.1.1, macOS High Sierra before 10.13.6, a spoofing issue existed in the handling of URLs. This issue was addressed with improved input validation. |
|||
CVE-2018-4275 | CWE-119 | Buffer Errors | 8.6 |
A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1. |
|||
CVE-2018-4274 | CWE-20 | Input Validation | 7.5 |
A spoofing issue existed in the handling of URLs. This issue was addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, Safari 11.1.2. |
|||
CVE-2018-4273 | CWE-20 | Input Validation | 6.5 |
Multiple memory corruption issues were addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6. |
|||
CVE-2018-4272 | CWE-119 | Buffer Errors | 8.8 |
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6. |