CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 1CVE-2018-4384 – FaceTime - RTP Video Processing Heap Corruption
https://notcve.org/view.php?id=CVE-2018-4384
A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12.1, watchOS 5.1. Un problema de corrupción de memoria se abordó con una validación de entradas mejorada. Este problema afectaba a iOS en versiones anteriores a la 12.1 y watchOS en versiones anteriores a la 5.1. There is a memory corruption issue when processing a malformed RTP video stream in FaceTime that leads to a kernel panic due to a corrupted heap cookie or data abort. • https://www.exploit-db.com/exploits/45786 https://support.apple.com/kb/HT209192 https://support.apple.com/kb/HT209195 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 0CVE-2018-4372
https://notcve.org/view.php?id=CVE-2018-4372
Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. Se abordaron múltiples problemas de corrupción de memoria con una gestión de memoria mejorada. El problema afectaba a iOS en versiones anteriores a la 12.1; tvOS en versiones anteriores a la 12.1; watchOS en versiones anteriores a la 5.1; Safari en versiones anteriores a la 12.0.1; iTunes en versiones anteriores a la 12.9.1 y iCloud para Windows en versiones anteriores a la 7.8. • https://support.apple.com/kb/HT209192 https://support.apple.com/kb/HT209194 https://support.apple.com/kb/HT209195 https://support.apple.com/kb/HT209196 https://support.apple.com/kb/HT209197 https://support.apple.com/kb/HT209198 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0CVE-2018-4398
https://notcve.org/view.php?id=CVE-2018-4398
An issue existed in the method for determining prime numbers. This issue was addressed by using pseudorandom bases for testing of primes. This issue affected versions prior to iOS 12.1, macOS Mojave 10.14.1, tvOS 12.1, watchOS 5.1, iTunes 12.9.1, iCloud for Windows 7.8. Existía un problema en la manera en la que se determinaban los número primos. Este problema se abordó utilizando bases pseudoaleatorias para realizar pruebas de número primos. • https://support.apple.com/kb/HT209192 https://support.apple.com/kb/HT209193 https://support.apple.com/kb/HT209194 https://support.apple.com/kb/HT209195 https://support.apple.com/kb/HT209197 https://support.apple.com/kb/HT209198 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2018-4369
https://notcve.org/view.php?id=CVE-2018-4369
A logic issue was addressed with improved state management. This issue affected versions prior to iOS 12.1, macOS Mojave 10.14.1, tvOS 12.1, watchOS 5.1. Un problema de lógica se abordó con una gestión de estado mejorada. Este problema afectaba a iOS en versiones anteriores a la 12.1, macOS Mojave en versiones anteriores a la 10.14.1, tvOS en versiones anteriores a la 12.1 y watchOS en versiones anteriores a la 5.1. • https://support.apple.com/kb/HT209192 https://support.apple.com/kb/HT209193 https://support.apple.com/kb/HT209194 https://support.apple.com/kb/HT209195 • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2018-4368
https://notcve.org/view.php?id=CVE-2018-4368
A denial of service issue was addressed with improved validation. This issue affected versions prior to iOS 12.1, macOS Mojave 10.14.1, tvOS 12.1, watchOS 5.1. Un problema de denegación de servicio (DoS) se abordó con una validación mejorada. Este problema afectaba a iOS en versiones anteriores a la 12.1, macOS Mojave en versiones anteriores a la 10.14.1, tvOS en versiones anteriores a la 12.1 y watchOS en versiones anteriores a la 5.1. • https://support.apple.com/kb/HT209192 https://support.apple.com/kb/HT209193 https://support.apple.com/kb/HT209194 https://support.apple.com/kb/HT209195 • CWE-20: Improper Input Validation •