CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2018-4460 – Apple Security Advisory 2018-12-05-2
https://notcve.org/view.php?id=CVE-2018-4460
06 Dec 2018 — A denial of service issue was addressed by removing the vulnerable code. This issue affected versions prior to iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2. Un problema de divulgación de información se abordó eliminando el código vulnerable. Este problema afectaba a iOS en versiones anteriores a la 12.1.1, macOS Mojave en versiones anteriores a la 10.14.2, tvOS en versiones anteriores a la 12.1.1, watchOS en versiones anteriores a la 5.1.2. macOS Mojave 10.14.2, Security Update 2018-003 High... • https://support.apple.com/kb/HT209340 • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 2CVE-2018-4404 – Apple macOS launchd Improper Access Check Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2018-4404
05 Nov 2018 — In iOS before 11.4 and macOS High Sierra before 10.13.5, a memory corruption issue exists and was addressed with improved memory handling. En iOS en versiones anteriores a la 11.4 y macOS High Sierra en versiones anteriores a la 10.13.5, existe un problema de corrupción de memoria y se abordó con la mejora de la gestión de memoria. This vulnerability allows local attackers to escalate privileges on vulnerable installations of Apple macOS. An attacker must first obtain the ability to execute low-privileged c... • https://packetstorm.news/files/id/150779 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.6EPSS: 0%CPEs: 4EXPL: 0CVE-2018-4354 – Apple Security Advisory 2018-10-30-11
https://notcve.org/view.php?id=CVE-2018-4354
31 Oct 2018 — A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. Un problema de corrupción de memoria se abordó con una gestión de memoria mejorada. Este problema afectaba a iOS en versiones anteriores a la 12, macOS Mojave en versiones anteriores a la 10.14, tvOS en versiones anteriores a la 12 y watchOS en versiones anteriores a la 5 macOS Mojave 10.14.1, Security Update 2018-001 High Sierra, and Security Update 20... • https://support.apple.com/kb/HT209106 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2018-4385 – Apple Security Advisory 2018-10-30-1
https://notcve.org/view.php?id=CVE-2018-4385
31 Oct 2018 — A logic issue was addressed with improved state management. This issue affected versions prior to iOS 12.1. Un problema de lógica se abordó con una gestión de estado mejorada. Este problema afectaba a iOS en versiones anteriores a la 12.1. iOS 12.1 is now available and addresses code execution, cross site scripting, denial of service, and resource exhaustion vulnerabilities. • https://support.apple.com/kb/HT209192 • CWE-20: Improper Input Validation •
CVSS: 2.4EPSS: 0%CPEs: 1EXPL: 0CVE-2018-4387 – Apple Security Advisory 2018-10-30-1
https://notcve.org/view.php?id=CVE-2018-4387
31 Oct 2018 — A lock screen issue allowed access to photos via Reply With Message on a locked device. This issue was addressed with improved state management. This issue affected versions prior to iOS 12.1. Un problema de pantalla de bloqueo permitía el acceso a las fotos mediante la función "Reply With Message" en un dispositivo bloqueado. Este problema se abordó con una gestión de estado mejorada. • https://support.apple.com/kb/HT209192 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.8EPSS: 88%CPEs: 7EXPL: 3CVE-2018-4416 – WebKit JSC JIT - 'JSPropertyNameEnumerator' Type Confusion
https://notcve.org/view.php?id=CVE-2018-4416
31 Oct 2018 — Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. Se abordaron múltiples problemas de corrupción de memoria con una gestión de memoria mejorada. El problema afectaba a iOS en versiones anteriores a la 12.1; tvOS en versiones anteriores a la 12.1; watchOS en versiones anteriores a la 5.1; Safari en versiones anteriores a la 12.0.1; iTunes en versiones ant... • https://packetstorm.news/files/id/150528 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 74%CPEs: 7EXPL: 2CVE-2018-4382 – WebKit JIT - 'ByteCodeParser::handleIntrinsicCall' Type Confusion
https://notcve.org/view.php?id=CVE-2018-4382
31 Oct 2018 — Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. Se abordaron múltiples problemas de corrupción de memoria con una gestión de memoria mejorada. El problema afectaba a iOS en versiones anteriores a la 12.1, tvOS en versiones anteriores a la 12.1, watchOS en versiones anteriores a la 5.1, Safari en versiones anteriores a la 12.0.1, iTunes en versiones ant... • https://packetstorm.news/files/id/150529 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2018-4310 – Apple Security Advisory 2018-10-30-9
https://notcve.org/view.php?id=CVE-2018-4310
31 Oct 2018 — An access issue was addressed with additional sandbox restrictions. This issue affected versions prior to iOS 12, macOS Mojave 10.14. Se abordó un problema de accesos con restricciones adicionales en el sandbox. Este problema afectaba a iOS en versiones anteriores a la 12 y macOS Mojave en versiones anteriores a la 10.14. macOS Mojave 10.14.1, Security Update 2018-001 High Sierra, and Security Update 2018-005 Sierra are now available and address buffer overflow, code execution, denial of service, and inform... • https://support.apple.com/kb/HT209106 • CWE-269: Improper Privilege Management •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2018-4203 – Apple macOS usymptomsd Out-Of-Bounds Access Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2018-4203
31 Oct 2018 — An out-of-bounds read was addressed with improved bounds checking. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. Se abordó un problema de lectura fuera de límites con una comprobación de límites mejorada. Este problema afectaba a versiones anteriores a iOS 12, macOS Mojave 10.14, tvOS 12 y watchOS 5. This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of Apple macOS. • https://support.apple.com/kb/HT209106 • CWE-125: Out-of-bounds Read •
CVSS: 8.8EPSS: 0%CPEs: 6EXPL: 0CVE-2018-4376 – Apple Safari RenderCounter Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2018-4376
31 Oct 2018 — Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. Se abordaron múltiples problemas de corrupción de memoria con una gestión de memoria mejorada. El problema afectaba a iOS en versiones anteriores a la 12.1, watchOS en versiones anteriores a la 5.1, Safari en versiones anteriores a la 12.0.1, iTunes en versiones anteriores a la 12.9.1 y iCloud para Windows en versio... • https://support.apple.com/kb/HT209192 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •