CVE-2018-4344

HIGH KEV

Apple Iphone OS < 12.0 - Memory Corruption

Title source: rule

Description

A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5.

References (5)

[Release Notes, Vendor Advisory] https://support.apple.com/kb/HT209106

[Release Notes, Vendor Advisory] https://support.apple.com/kb/HT209107

[Release Notes, Vendor Advisory] https://support.apple.com/kb/HT209108

[Release Notes, Vendor Advisory] https://support.apple.com/kb/HT209139

[US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-4344

Scores

CVSS v3 7.8

EPSS 0.0018

EPSS Percentile 39.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CISA KEV 2022-06-27

VulnCheck KEV 2022-06-23

InTheWild.io 2022-06-27

ENISA EUVD EUVD-2018-16130

CWE

CWE-119

Status published

Products (4)

apple/iphone_os < 12.0

apple/mac_os_x < 10.14

apple/tvos < 12.0

apple/watchos < 5.0

Published Apr 03, 2019

KEV Added Jun 27, 2022

Tracked Since Feb 18, 2026