Description
A race condition was addressed with additional validation. This issue affected versions prior toiVersions prior to: OS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6.
References (6)
Core 6
Core References
Vendor Advisory x_refsource_misc
https://support.apple.com/kb/HT208933
Vendor Advisory x_refsource_misc
https://support.apple.com/kb/HT208938
Vendor Advisory x_refsource_misc
https://support.apple.com/kb/HT208935
Vendor Advisory x_refsource_misc
https://support.apple.com/kb/HT208936
Vendor Advisory x_refsource_misc
https://support.apple.com/kb/HT208934
Vendor Advisory x_refsource_misc
https://support.apple.com/kb/HT208932
Scores
CVSS v3
5.9
EPSS
0.0178
EPSS Percentile
75.4%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-362
Status
published
Products (6)
apple/icloud
< 7.6
apple/iphone_os
< 11.4.1
apple/itunes
< 12.8
apple/safari
< 11.1.2
apple/tvos
< 11.4.1
apple/watchos
< 4.3.2
Published
Apr 03, 2019
Tracked Since
Feb 18, 2026