CVE-2018-4314
HIGHApple Safari < 12 - Use After Free
Title source: ruleDescription
A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Google Security Research · htmldosmultiple
https://www.exploit-db.com/exploits/45480
Scores
CVSS v3
8.8
EPSS
0.4070
EPSS Percentile
97.4%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-416
Status
published
Products (5)
apple/icloud
< 7.7
apple/iphone_os
< 12.0
apple/itunes
< 12.9
apple/safari
< 12
apple/tvos
< 12
Published
Apr 03, 2019
Tracked Since
Feb 18, 2026