CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 0CVE-2018-4465 – Apple Security Advisory 2018-12-05-2
https://notcve.org/view.php?id=CVE-2018-4465
06 Dec 2018 — A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2. Un problema de corrupción de memoria se abordó con una gestión de memoria mejorada. Este problema afectaba a iOS en versiones anteriores a la 12.1.1, macOS Mojave en versiones anteriores a la 10.14.2, tvOS en versiones anteriores a la 12.1.1 y watchOS en versiones anteriores a la 5.1.2. macOS Mojave 10.14.2, Security Update 2018-003 High S... • https://support.apple.com/kb/HT209340 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 2.4EPSS: 0%CPEs: 1EXPL: 0CVE-2018-4430 – Apple Security Advisory 2018-12-05-1
https://notcve.org/view.php?id=CVE-2018-4430
06 Dec 2018 — A lock screen issue allowed access to contacts on a locked device. This issue was addressed with improved state management. This issue affected versions prior to iOS 12.1.1. Un problema de bloqueo de pantalla permitía el acceso a los contactos en un dispositivo bloqueado. Este problema se abordó con una gestión de estado mejorada. • https://support.apple.com/kb/HT209340 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2018-4436 – Apple Security Advisory 2018-12-05-1
https://notcve.org/view.php?id=CVE-2018-4436
06 Dec 2018 — A certificate validation issue existed in configuration profiles. This was addressed with additional checks. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2. Existía un problema de validación de certificados en los perfiles de configuración. El problema se abordó con comprobaciones adicionales. • https://support.apple.com/kb/HT209340 • CWE-295: Improper Certificate Validation •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2018-4439 – Apple Security Advisory 2018-12-05-4
https://notcve.org/view.php?id=CVE-2018-4439
06 Dec 2018 — A logic issue was addressed with improved validation. This issue affected versions prior to iOS 12.1.1, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9. Un problema de lógica se abordó con una validación mejorada. El problema afectaba a iOS en versiones anteriores a la 12.1.1; Safari en versiones anteriores a la 12.0.2; iTunes para Windows en versiones anteriores a la 12.9.2 y iCloud para Windows en versiones anteriores a la 7.9. iOS 12.1.1 is now available and addresses code execution and ... • https://support.apple.com/kb/HT209340 • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 0%CPEs: 4EXPL: 0CVE-2018-4447 – Apple macOS watchevent Use-After-Free Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2018-4447
06 Dec 2018 — A memory corruption issue was addressed with improved state management. This issue affected versions prior to iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2. Un problema de corrupción de memoria se abordó con una gestión de estado mejorada. Este problema afectaba a iOS en versiones anteriores a la 12.1.1, macOS Mojave en versiones anteriores a la 10.14.2, tvOS en versiones anteriores a la 12.1.1, watchOS en versiones anteriores a la 5.1.2. This vulnerability allows local attackers to escalate ... • https://support.apple.com/kb/HT209340 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 85%CPEs: 7EXPL: 2CVE-2018-4442 – WebKit JSC JIT - GetIndexedPropertyStorage Use-After-Free
https://notcve.org/view.php?id=CVE-2018-4442
06 Dec 2018 — A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9. Un problema de corrupción de memoria se abordó con una gestión de memoria mejorada. El problema afectaba a iOS en versiones anteriores a la 12.1.1, tvOS en versiones anteriores a la 12.1.1, watchOS en versiones anteriores a la 5.1.2, Safari en versiones anteriores a la 12.0.2, iTunes para Windows... • https://packetstorm.news/files/id/151180 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 0CVE-2018-4437 – Apple Security Advisory 2018-12-05-4
https://notcve.org/view.php?id=CVE-2018-4437
06 Dec 2018 — Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9. Se abordaron múltiples problemas de corrupción de memoria con una gestión de memoria mejorada. El problema afectaba a iOS en versiones anteriores a la 12.1.1, tvOS en versiones anteriores a la 12.1.1, watchOS en versiones anteriores a la 5.1.2, Safari en versiones anteriores a la 12.0.2,... • https://support.apple.com/kb/HT209340 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2018-4429 – Apple Security Advisory 2018-12-05-1
https://notcve.org/view.php?id=CVE-2018-4429
06 Dec 2018 — A spoofing issue existed in the handling of URLs. This issue was addressed with improved input validation. This issue affected versions prior to iOS 12.1.1, watchOS 5.1.2. Existía un problema suplantación en la gestión de las URL. Este problema se abordó con una validación de entradas mejorada. • https://support.apple.com/kb/HT209340 • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 1CVE-2018-4431 – Apple Security Advisory 2018-12-05-2
https://notcve.org/view.php?id=CVE-2018-4431
06 Dec 2018 — A memory initialization issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2. Un problema de inicialización de memoria se abordó con una gestión de memoria mejorada. Este problema afectaba a iOS en versiones anteriores a la 12.1.1; macOS Mojave en versiones anteriores a la 10.14.2; tvOS en versiones anteriores a la 12.1.1 y watchOS en versiones anteriores a la 5.1.2. macOS Mojave 10.14.2, Security Update 2018-00... • https://github.com/ktiOSz/PoC_iOS12 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.8EPSS: 51%CPEs: 7EXPL: 2CVE-2018-4438 – WebKit JIT - Int32/Double Arrays can have Proxy Objects in the Prototype Chains
https://notcve.org/view.php?id=CVE-2018-4438
06 Dec 2018 — A logic issue existed resulting in memory corruption. This was addressed with improved state management. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9. Existía un problema de lógica que resultaba en una corrupción de memoria. Este problema se abordó con una gestión de estado mejorada. • https://packetstorm.news/files/id/150746 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •