CVE-2018-4212

high

Description

In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks.

References

https://security.gentoo.org/glsa/201812-04

https://support.apple.com/HT208693,

https://support.apple.com/HT208694

https://support.apple.com/HT208695,

https://support.apple.com/HT208696,

https://support.apple.com/HT208697,

https://support.apple.com/HT208698,

https://usn.ubuntu.com/3781-1/

Details

Source: MITRE

Published: 2019-01-11

Updated: 2019-03-08

Type: NVD-CWE-noinfo

Risk Information

CVSS v2

Base Score: 6.8

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 8.6

Severity: MEDIUM

CVSS v3

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 2.8

Severity: HIGH