CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2018-4307 – Apple Security Advisory 2018-10-30-8
https://notcve.org/view.php?id=CVE-2018-4307
17 Sep 2018 — A logic issue was addressed with improved state management. This issue affected versions prior to iOS 12, Safari 12. Un problema de lógica se abordó con una gestión de estado mejorada. Este problema afectaba a iOS en versiones anteriores a la 12 y Safari en versiones anteriores a la 12. APPLE-SA-2018-9-24-3 provides dditional information for APPLE-SA-2018-9-17-4. • https://support.apple.com/kb/HT209106 • CWE-20: Improper Input Validation •
CVSS: 8.0EPSS: 0%CPEs: 9EXPL: 0CVE-2018-5383 – Bluetooth implementations may not sufficiently validate elliptic curve parameters during Diffie-Hellman key exchange
https://notcve.org/view.php?id=CVE-2018-5383
23 Jul 2018 — Bluetooth firmware or operating system software drivers in macOS versions before 10.13, High Sierra and iOS versions before 11.4, and Android versions before the 2018-06-05 patch may not sufficiently validate elliptic curve parameters used to generate public keys during a Diffie-Hellman key exchange, which may allow a remote attacker to obtain the encryption key used by the device. El firmware bluetooth o los controladores de software del sistema operativo en versiones de macOS anteriores a la 10.13, versio... • http://www.cs.technion.ac.il/~biham/BT • CWE-325: Missing Cryptographic Step CWE-347: Improper Verification of Cryptographic Signature •
CVSS: 4.3EPSS: 0%CPEs: 8EXPL: 0CVE-2018-4278 – Ubuntu Security Notice USN-3743-1
https://notcve.org/view.php?id=CVE-2018-4278
09 Jul 2018 — In Safari before 11.1.2, iTunes before 12.8 for Windows, iOS before 11.4.1, tvOS before 11.4.1, iCloud for Windows before 7.6, sound fetched through audio elements may be exfiltrated cross-origin. This issue was addressed with improved audio taint tracking. En Safari en versiones anteriores a la 11.1.2, iTunes en versiones anteriores a la 12.8 para Windows, iOS en versiones anteriores a la 11.4.1, tvOS en versiones anteriores a la 11.4.1 e iCloud para Windows en versiones anteriores a la 7.6, el sonido capt... • http://www.securitytracker.com/id/1041232 •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2018-4282 – Apple Security Advisory 2018-7-9-3
https://notcve.org/view.php?id=CVE-2018-4282
09 Jul 2018 — An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2. Existía un problema de lectura fuera de límites que conducía a la divulgación de memoria del kernel. Este problema se abordó con una validación de entradas mejorada. • https://support.apple.com/kb/HT208935 • CWE-125: Out-of-bounds Read •
CVSS: 6.5EPSS: 0%CPEs: 7EXPL: 0CVE-2018-4270 – Apple Security Advisory 2018-7-9-5
https://notcve.org/view.php?id=CVE-2018-4270
09 Jul 2018 — A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6. Un problema de corrupción de memoria se abordó con una gestión de memoria mejorada. El problema afectaba a iOS en versiones anteriores a la 11.4.1, tvOS en versiones anteriores a la 11.4.1, watchOS en versiones anteriores a la 4.3.2, Safari en versiones anteriores a la 11.1.2, iTunes en versiones a... • https://support.apple.com/kb/HT208932 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2018-4260 – Apple Security Advisory 2018-7-9-5
https://notcve.org/view.php?id=CVE-2018-4260
09 Jul 2018 — An inconsistent user interface issue was addressed with improved state management. This issue affected versions prior to iOS 11.4.1, Safari 11.1.2. Se abordó un problema de inconsistencia en la interfaz de usuario con una gestión de estado mejorada. Este problema afectaba a iOS en versiones anteriores a la 11.4.1 y Safari en versiones anteriores a la 11.1.2. Safari 11.1.2 is now available and addresses code execution and denial of service vulnerabilities. • https://support.apple.com/kb/HT208934 • CWE-20: Improper Input Validation •
CVSS: 8.6EPSS: 0%CPEs: 7EXPL: 0CVE-2018-4269 – Apple Security Advisory 2018-10-30-14
https://notcve.org/view.php?id=CVE-2018-4269
09 Jul 2018 — A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2, iTunes 12.8 for Windows, iCloud for Windows 7.6. Un problema de corrupción de memoria se abordó con una validación de entradas mejorada. El problema afectaba a iOS en versiones anteriores a la 11.4.1, macOS High Sierra en versiones anteriores a la 10.13.6, tvOS en versiones anteriores a la 11.4.1, watchOS en versiones anteriores a la... • https://support.apple.com/kb/HT208932 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 0CVE-2018-4264 – Apple Security Advisory 2018-7-9-5
https://notcve.org/view.php?id=CVE-2018-4264
09 Jul 2018 — Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6. Se abordaron múltiples problemas de corrupción de memoria con una gestión de memoria mejorada. El problema afectaba a iOS en versiones anteriores a la 11.4.1, tvOS en versiones anteriores a la 11.4.1, watchOS en versiones anteriores a la 4.3.2, Safari en versiones anteriores a la 11.1.2, i... • https://support.apple.com/kb/HT208932 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 0CVE-2018-4284 – Apple Security Advisory 2018-7-9-5
https://notcve.org/view.php?id=CVE-2018-4284
09 Jul 2018 — A type confusion issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6. Un problema de confusión de tipo se abordó con una gestión de memoria mejorada. El problema afectaba a iOS en versiones anteriores a la 11.4.1, tvOS en versiones anteriores a la 11.4.1, watchOS en versiones anteriores a la 4.3.2, Safari en versiones anteriores a la 11.1.2, iTunes para Windows en versi... • https://support.apple.com/kb/HT208932 • CWE-704: Incorrect Type Conversion or Cast •
CVSS: 6.5EPSS: 0%CPEs: 7EXPL: 0CVE-2018-4273 – Apple Security Advisory 2018-7-9-5
https://notcve.org/view.php?id=CVE-2018-4273
09 Jul 2018 — Multiple memory corruption issues were addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6. Múltiples problemas de corrupción de memoria se abordaron con una validación de entradas mejorada. El problema afectaba a iOS en versiones anteriores a la 11.4.1; tvOS en versiones anteriores a la 11.4.1; watchOS en versiones anteriores a la 4.3.2; Safari en versiones anteriores a la 11.1... • https://support.apple.com/kb/HT208932 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •