CVE-2018-4331

CRITICAL

Apple Iphone OS < 12.0 - Memory Corruption

Title source: rule

Description

A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5.

Exploits (1)

nomisec WORKING POC 24 stars
by bazad · poc
https://github.com/bazad/gsscred-race

References (5)

Scores

CVSS v3 9.8
EPSS 0.1906
EPSS Percentile 95.3%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-119
Status published
Products (4)
apple/iphone_os < 12.0
apple/mac_os_x < 10.14
apple/tvos < 12
apple/watchos < 5.0
Published Apr 03, 2019
Tracked Since Feb 18, 2026