CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2018-4412 – Apple Security Advisory 2018-10-30-12
https://notcve.org/view.php?id=CVE-2018-4412
31 Oct 2018 — A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5, iTunes 12.9 for Windows, iCloud for Windows 7.7. Un problema de corrupción de memoria se abordó con una validación de entradas mejorada. El problema afectaba a iOS en versiones anteriores a la 12, macOS Mojave en versiones anteriores a la 10.14, tvOS en versiones anteriores a la 12, watchOS en versiones anteriores a la 5, iTunes en versiones anteriores... • https://support.apple.com/kb/HT209106 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2018-4203 – Apple macOS usymptomsd Out-Of-Bounds Access Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2018-4203
31 Oct 2018 — An out-of-bounds read was addressed with improved bounds checking. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. Se abordó un problema de lectura fuera de límites con una comprobación de límites mejorada. Este problema afectaba a versiones anteriores a iOS 12, macOS Mojave 10.14, tvOS 12 y watchOS 5. This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of Apple macOS. • https://support.apple.com/kb/HT209106 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 2CVE-2018-4384 – FaceTime - RTP Video Processing Heap Corruption
https://notcve.org/view.php?id=CVE-2018-4384
31 Oct 2018 — A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12.1, watchOS 5.1. Un problema de corrupción de memoria se abordó con una validación de entradas mejorada. Este problema afectaba a iOS en versiones anteriores a la 12.1 y watchOS en versiones anteriores a la 5.1. There is a memory corruption issue when processing a malformed RTP video stream in FaceTime that leads to a kernel panic due to a corrupted heap cookie or data abort. • https://packetstorm.news/files/id/150209 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 83%CPEs: 7EXPL: 4CVE-2018-4386 – Sony Playstation 4 (PS4) < 6.72 - WebKit Code Execution (PoC)
https://notcve.org/view.php?id=CVE-2018-4386
31 Oct 2018 — Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. Se abordaron múltiples problemas de corrupción de memoria con una gestión de memoria mejorada. El problema afectaba a iOS en versiones anteriores a la 12.1, tvOS en versiones anteriores a la 12.1, watchOS en versiones anteriores a la 5.1, Safari en versiones anteriores a la 12.0.1, iTunes en versiones ant... • https://packetstorm.news/files/id/150531 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2018-4414 – Apple Security Advisory 2018-10-30-12
https://notcve.org/view.php?id=CVE-2018-4414
31 Oct 2018 — A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5, iTunes 12.9 for Windows, iCloud for Windows 7.7. Un problema de corrupción de memoria se abordó con una validación de entradas mejorada. El problema afectaba a iOS en versiones anteriores a la 12, macOS Mojave en versiones anteriores a la 10.14, tvOS en versiones anteriores a la 12, watchOS en versiones anteriores a la 5, iTunes para Windows en version... • https://support.apple.com/kb/HT209106 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 0%CPEs: 4EXPL: 0CVE-2018-4401 – Apple Security Advisory 2018-10-30-11
https://notcve.org/view.php?id=CVE-2018-4401
31 Oct 2018 — A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. Un problema de corrupción de memoria se abordó con una gestión de memoria mejorada. Este problema afectaba a iOS en versiones anteriores a la 12, macOS Mojave en versiones anteriores a la 10.14, tvOS en versiones anteriores a la 12 y watchOS en versiones anteriores a la 5. macOS Mojave 10.14.1, Security Update 2018-001 High Sierra, and Security Update 2... • https://support.apple.com/kb/HT209106 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2018-4369 – Apple Security Advisory 2018-10-30-4
https://notcve.org/view.php?id=CVE-2018-4369
31 Oct 2018 — A logic issue was addressed with improved state management. This issue affected versions prior to iOS 12.1, macOS Mojave 10.14.1, tvOS 12.1, watchOS 5.1. Un problema de lógica se abordó con una gestión de estado mejorada. Este problema afectaba a iOS en versiones anteriores a la 12.1, macOS Mojave en versiones anteriores a la 10.14.1, tvOS en versiones anteriores a la 12.1 y watchOS en versiones anteriores a la 5.1. macOS Mojave 10.14.1, Security Update 2018-001 High Sierra, and Security Update 2018-005 Sie... • https://support.apple.com/kb/HT209192 • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2018-4385 – Apple Security Advisory 2018-10-30-1
https://notcve.org/view.php?id=CVE-2018-4385
31 Oct 2018 — A logic issue was addressed with improved state management. This issue affected versions prior to iOS 12.1. Un problema de lógica se abordó con una gestión de estado mejorada. Este problema afectaba a iOS en versiones anteriores a la 12.1. iOS 12.1 is now available and addresses code execution, cross site scripting, denial of service, and resource exhaustion vulnerabilities. • https://support.apple.com/kb/HT209192 • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2018-4355 – Apple Security Advisory 2018-10-30-9
https://notcve.org/view.php?id=CVE-2018-4355
31 Oct 2018 — A configuration issue was addressed with additional restrictions. This issue affected versions prior to iOS 12, macOS Mojave 10.14. Se abordó un problema de configuración con restricciones adicionales. Este problema afectaba a iOS en versiones anteriores a la 12 y macOS Mojave en versiones anteriores a la 10.14. macOS Mojave 10.14 addresses buffer overflow, code execution, denial of service, and information leakage vulnerabilities. • https://support.apple.com/kb/HT209106 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.8EPSS: 2%CPEs: 1EXPL: 2CVE-2018-4367 – FaceTime - 'readSPSandGetDecoderParams' Stack Corruption
https://notcve.org/view.php?id=CVE-2018-4367
31 Oct 2018 — A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12.1. Un problema de corrupción de memoria se abordó con una validación de entradas mejorada. Este problema afectaba a iOS en versiones anteriores a la 12.1. iOS 12.1 is now available and addresses code execution, cross site scripting, denial of service, and resource exhaustion vulnerabilities. • https://packetstorm.news/files/id/150207 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •