CVE-2018-4269

HIGH

Safari < 11.1.2 - Memory Corruption

Title source: llm

Description

A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2, iTunes 12.8 for Windows, iCloud for Windows 7.6.

References (4)

Core 4

Core References

Vendor Advisory x_refsource_misc

https://support.apple.com/kb/HT208937

Vendor Advisory x_refsource_misc

https://support.apple.com/kb/HT208935

Vendor Advisory x_refsource_misc

https://support.apple.com/kb/HT208936

Vendor Advisory x_refsource_misc

https://support.apple.com/kb/HT208932

Scores

CVSS v3 8.6

EPSS 0.0098

EPSS Percentile 57.8%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Details

CWE

CWE-119

Status published

Products (6)

apple/icloud < 7.6

apple/iphone_os < 11.4.1

apple/itunes < 12.8

apple/safari < 11.1.2

apple/tvos < 11.4.1

apple/watchos < 4.3.2

Published Apr 03, 2019

Tracked Since Feb 18, 2026