CVE-2018-4317
HIGHApple Safari < 12 - Use After Free
Title source: ruleDescription
A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Google Security Research · htmldosmultiple
https://www.exploit-db.com/exploits/45486
Scores
CVSS v3
8.8
EPSS
0.2004
EPSS Percentile
95.5%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-416
Status
published
Products (5)
apple/icloud
< 7.7
apple/iphone_os
< 12.0
apple/itunes
< 12.9
apple/safari
< 12
apple/tvos
< 12
Published
Apr 03, 2019
Tracked Since
Feb 18, 2026