CVE-2018-4474
HIGHApple iCloud <7.7, iTunes <12.9, Safari <12, iOS <12.0, tvOS <12, watchOS <5.0 - DoS via Memory Consumption
Title source: llmDescription
A memory consumption issue was addressed with improved memory handling. This issue is fixed in iCloud for Windows 7.7, watchOS 5, Safari 12, iOS 12, iTunes 12.9 for Windows, tvOS 12. Unexpected interaction causes an ASSERT failure.
References (6)
Core 6
Core References
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT209106
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT209107
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT209108
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT209109
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT209140
Vendor Advisory x_refsource_misc
https://support.apple.com/en-us/HT209141
Scores
CVSS v3
7.5
EPSS
0.0169
EPSS Percentile
74.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-400
Status
published
Products (6)
apple/icloud
< 7.7
apple/iphone_os
< 12.0
apple/itunes
< 12.9
apple/safari
< 12
apple/tvos
< 12
apple/watchos
< 5.0
Published
Oct 27, 2020
Tracked Since
Feb 18, 2026