| Month | Quarter | Year |
|---|---|---|
| #N/A | #N/A | #N/A |
| CVE-ID | CWE-ID | Type | Score |
|---|---|---|---|
| CVE-2018-8294 | CWE-119 | Buffer Errors | 7.5 |
|
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8280, CVE-2018-8286, CVE-2018-8290.
|
|||
| CVE-2018-4407 | CWE-119 | Buffer Errors | 8.8 |
|
A memory corruption issue was addressed with improved validation. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5.
|
|||
| CVE-2018-4291 | CWE-119 | Buffer Errors | 9.8 |
|
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to macOS High Sierra 10.13.6.
|
|||
| CVE-2018-4288 | CWE-119 | Buffer Errors | 9.8 |
|
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to macOS High Sierra 10.13.6.
|
|||
| CVE-2018-4287 | CWE-119 | Buffer Errors | 9.8 |
|
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to macOS High Sierra 10.13.6.
|
|||
| CVE-2018-4286 | CWE-119 | Buffer Errors | 9.8 |
|
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to macOS High Sierra 10.13.6.
|
|||
| CVE-2018-4259 | CWE-119 | Buffer Errors | 9.8 |
|
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to macOS High Sierra 10.13.6.
|
|||
| CVE-2018-4249 | CWE-190 | Integer Overflow or Wraparound | 7.8 |
|
An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS before 10.13.5 is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves pktmnglr_ipfilter_input in com.apple.packet-mangler in the "Kernel" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (integer overflow and stack-based buffer overflow) via a crafted app.
|
|||
| CVE-2018-4160 | CWE-125 | Out-of-bounds Read | 7.8 |
|
An issue was discovered in certain Apple products. macOS before 10.13.4 is affected. The issue involves the "Kernel" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (out-of-bounds read) via a crafted app.
|
|||
| CVE-2018-4136 | CWE-125 | Out-of-bounds Read | 7.8 |
|
An issue was discovered in certain Apple products. macOS before 10.13.4 is affected. The issue involves the "Kernel" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (out-of-bounds read) via a crafted app.
|
|||