A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2, iTunes 12.8 for Windows, iCloud for Windows 7.6.
https://support.apple.com/kb/HT208932
https://support.apple.com/kb/HT208935
Source: MITRE
Published: 2019-04-03
Updated: 2019-04-04
Type: CWE-119
Base Score: 6.8
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Impact Score: 6.4
Exploitability Score: 8.6
Severity: MEDIUM
Base Score: 8.6
Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Impact Score: 6
Exploitability Score: 1.8
Severity: HIGH
OR
cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
AND
OR
OR
ID | Name | Product | Family | Severity |
---|---|---|---|---|
700517 | macOS 10.13.x < 10.13.6 Multiple Vulnerabilities | Nessus Network Monitor | Operating System Detection | critical |
111137 | macOS 10.13.x < 10.13.6 Multiple Vulnerabilities | Nessus | MacOS X Local Security Checks | critical |
111136 | macOS and Mac OS X Multiple Vulnerabilities (Security Update 2018-004) | Nessus | MacOS X Local Security Checks | critical |