Description
In iOS before 11.4, iCloud for Windows before 7.5, watchOS before 4.3.1, iTunes before 12.7.5 for Windows, and macOS High Sierra before 10.13.5, an out-of-bounds read was addressed with improved input validation.
References (5)
Core 5
Core References
Vendor Advisory x_refsource_misc
https://support.apple.com/HT208853
Vendor Advisory x_refsource_misc
https://support.apple.com/HT208848
Vendor Advisory x_refsource_misc
https://support.apple.com/HT208852
Vendor Advisory x_refsource_misc
https://support.apple.com/HT208851
Vendor Advisory x_refsource_confirm
https://support.apple.com/HT208849
Scores
CVSS v3
8.8
EPSS
0.0051
EPSS Percentile
66.3%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-125
Status
published
Products (5)
apple/icloud
< 7.5
apple/iphone_os
< 11.4
apple/itunes
< 12.7.5
apple/mac_os_x
10.13.0 - 10.13.5
apple/watchos
< 4.3.1
Published
Jan 11, 2019
Tracked Since
Feb 18, 2026