CVSS: 8.8EPSS: 85%CPEs: 7EXPL: 2CVE-2018-4442 – WebKit JSC JIT - GetIndexedPropertyStorage Use-After-Free
https://notcve.org/view.php?id=CVE-2018-4442
06 Dec 2018 — A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9. Un problema de corrupción de memoria se abordó con una gestión de memoria mejorada. El problema afectaba a iOS en versiones anteriores a la 12.1.1, tvOS en versiones anteriores a la 12.1.1, watchOS en versiones anteriores a la 5.1.2, Safari en versiones anteriores a la 12.0.2, iTunes para Windows... • https://packetstorm.news/files/id/151180 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 0CVE-2018-4437 – Apple Security Advisory 2018-12-05-4
https://notcve.org/view.php?id=CVE-2018-4437
06 Dec 2018 — Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9. Se abordaron múltiples problemas de corrupción de memoria con una gestión de memoria mejorada. El problema afectaba a iOS en versiones anteriores a la 12.1.1, tvOS en versiones anteriores a la 12.1.1, watchOS en versiones anteriores a la 5.1.2, Safari en versiones anteriores a la 12.0.2,... • https://support.apple.com/kb/HT209340 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2018-4445 – Apple Security Advisory 2018-12-05-4
https://notcve.org/view.php?id=CVE-2018-4445
06 Dec 2018 — "Clear History and Website Data" did not clear the history. The issue was addressed with improved data deletion. This issue affected versions prior to iOS 12.1.1, Safari 12.0.2. >"Clear History and Website Data" no limpió el historial. Este problema se abordó con una supresión de datos mejorada. • https://support.apple.com/kb/HT209340 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2018-4429 – Apple Security Advisory 2018-12-05-1
https://notcve.org/view.php?id=CVE-2018-4429
06 Dec 2018 — A spoofing issue existed in the handling of URLs. This issue was addressed with improved input validation. This issue affected versions prior to iOS 12.1.1, watchOS 5.1.2. Existía un problema suplantación en la gestión de las URL. Este problema se abordó con una validación de entradas mejorada. • https://support.apple.com/kb/HT209340 • CWE-20: Improper Input Validation •
CVSS: 2.4EPSS: 0%CPEs: 1EXPL: 0CVE-2018-4430 – Apple Security Advisory 2018-12-05-1
https://notcve.org/view.php?id=CVE-2018-4430
06 Dec 2018 — A lock screen issue allowed access to contacts on a locked device. This issue was addressed with improved state management. This issue affected versions prior to iOS 12.1.1. Un problema de bloqueo de pantalla permitía el acceso a los contactos en un dispositivo bloqueado. Este problema se abordó con una gestión de estado mejorada. • https://support.apple.com/kb/HT209340 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2018-4446 – Apple Security Advisory 2018-12-05-1
https://notcve.org/view.php?id=CVE-2018-4446
06 Dec 2018 — This issue was addressed with improved entitlements. This issue affected versions prior to iOS 12.1.1. Este problema se abordó con autorizaciones mejoradas. Este problema afectaba a iOS en versiones anteriores a la 12.1.1. iOS 12.1.1 is now available and addresses code execution and denial of service vulnerabilities. • https://support.apple.com/kb/HT209340 • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 2CVE-2018-4404 – Apple macOS launchd Improper Access Check Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2018-4404
05 Nov 2018 — In iOS before 11.4 and macOS High Sierra before 10.13.5, a memory corruption issue exists and was addressed with improved memory handling. En iOS en versiones anteriores a la 11.4 y macOS High Sierra en versiones anteriores a la 10.13.5, existe un problema de corrupción de memoria y se abordó con la mejora de la gestión de memoria. This vulnerability allows local attackers to escalate privileges on vulnerable installations of Apple macOS. An attacker must first obtain the ability to execute low-privileged c... • https://packetstorm.news/files/id/150779 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 6EXPL: 0CVE-2018-4375 – Apple Safari FrameLoader Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2018-4375
31 Oct 2018 — Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. Se abordaron múltiples problemas de corrupción de memoria con una gestión de memoria mejorada. El problema afectaba a iOS en versiones anteriores a la 12.1, watchOS en versiones anteriores a la 5.1, Safari en versiones anteriores a la 12.0.1, iTunes en versiones anteriores a la 12.9.1 y iCloud para Windows en versio... • https://support.apple.com/kb/HT209192 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 0%CPEs: 4EXPL: 0CVE-2018-4426 – Apple Security Advisory 2018-10-30-11
https://notcve.org/view.php?id=CVE-2018-4426
31 Oct 2018 — A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. Un problema de corrupción de memoria se abordó con una gestión de memoria mejorada. Este problema afectaba a iOS en versiones anteriores a la 12, macOS Mojave en versiones anteriores a la 10.14, tvOS en versiones anteriores a la 12, watchOS en versiones anteriores a la 5. macOS Mojave 10.14.1, Security Update 2018-001 High Sierra, and Security Update 20... • https://support.apple.com/kb/HT209106 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2018-4391 – Apple Security Advisory 2018-10-30-1
https://notcve.org/view.php?id=CVE-2018-4391
31 Oct 2018 — An inconsistent user interface issue was addressed with improved state management. This issue is fixed in macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, and Security Update 2017-004 El Capitan, watchOS 4.3, iOS 12.1. Processing a maliciously crafted text message may lead to UI spoofing. Se abordó un problema de interfaz de usuario inconsistente con una administración de estado mejorada. Este problema se corrigió en macOS High Sierra versión 10.13.1, Security Update 2017-001 Sierra y Securi... • https://support.apple.com/en-us/HT208221 •