CVE-2018-4305

MEDIUM

iPhone OS < 12.0 - Improper Input Validation

Title source: llm
STIX 2.1

Description

An input validation issue was addressed with improved input validation. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5.

References (3)

Core 3
Core References
Vendor Advisory x_refsource_misc
https://support.apple.com/kb/HT209107
Vendor Advisory x_refsource_misc
https://support.apple.com/kb/HT209106
Vendor Advisory x_refsource_misc
https://support.apple.com/kb/HT209108

Scores

CVSS v3 6.5
EPSS 0.0055
EPSS Percentile 41.9%
Attack Vector ADJACENT_NETWORK
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Details

CWE
CWE-20
Status published
Products (3)
apple/iphone_os < 12.0
apple/tvos < 12
apple/watchos < 5.0
Published Apr 03, 2019
Tracked Since Feb 18, 2026