CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 0CVE-2018-4284
https://notcve.org/view.php?id=CVE-2018-4284
A type confusion issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6. Un problema de confusión de tipo se abordó con una gestión de memoria mejorada. El problema afectaba a iOS en versiones anteriores a la 11.4.1, tvOS en versiones anteriores a la 11.4.1, watchOS en versiones anteriores a la 4.3.2, Safari en versiones anteriores a la 11.1.2, iTunes para Windows en versiones anteriores a la 12.8 y iCloud para Windows en versiones anteriores a la 7.6. • https://support.apple.com/kb/HT208932 https://support.apple.com/kb/HT208933 https://support.apple.com/kb/HT208934 https://support.apple.com/kb/HT208935 https://support.apple.com/kb/HT208936 https://support.apple.com/kb/HT208938 • CWE-704: Incorrect Type Conversion or Cast •
CVSS: 6.5EPSS: 0%CPEs: 7EXPL: 0CVE-2018-4270
https://notcve.org/view.php?id=CVE-2018-4270
A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6. Un problema de corrupción de memoria se abordó con una gestión de memoria mejorada. El problema afectaba a iOS en versiones anteriores a la 11.4.1, tvOS en versiones anteriores a la 11.4.1, watchOS en versiones anteriores a la 4.3.2, Safari en versiones anteriores a la 11.1.2, iTunes en versiones anteriores a la 12.8 para Windows y iCloud para Windows en versiones anteriores a la 7.6. • https://support.apple.com/kb/HT208932 https://support.apple.com/kb/HT208933 https://support.apple.com/kb/HT208934 https://support.apple.com/kb/HT208935 https://support.apple.com/kb/HT208936 https://support.apple.com/kb/HT208938 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.9EPSS: 0%CPEs: 7EXPL: 0CVE-2018-4266
https://notcve.org/view.php?id=CVE-2018-4266
A race condition was addressed with additional validation. This issue affected versions prior toiVersions prior to: OS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6. Se abordó una condición de carrera con una validación adicional. Este problema afectaba a las versiones anteriores de: iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 para Windows, iCloud para Windows 7.6. • https://support.apple.com/kb/HT208932 https://support.apple.com/kb/HT208933 https://support.apple.com/kb/HT208934 https://support.apple.com/kb/HT208935 https://support.apple.com/kb/HT208936 https://support.apple.com/kb/HT208938 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2018-4248
https://notcve.org/view.php?id=CVE-2018-4248
An out-of-bounds read was addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2. Se abordó un problema de lectura fuera de límites con una validación de entradas mejorada. Este problema afectaba a iOS en versiones anteriores a la 11.4.1, macOS High Sierra en versiones anteriores a la 10.13.6, tvOS en versiones anteriores a la 11.4.1 y watchOS en versiones anteriores a la 4.3.2. • https://support.apple.com/kb/HT208935 https://support.apple.com/kb/HT208936 https://support.apple.com/kb/HT208937 https://support.apple.com/kb/HT208938 • CWE-125: Out-of-bounds Read •
CVSS: 4.3EPSS: 0%CPEs: 8EXPL: 0CVE-2018-4278
https://notcve.org/view.php?id=CVE-2018-4278
In Safari before 11.1.2, iTunes before 12.8 for Windows, iOS before 11.4.1, tvOS before 11.4.1, iCloud for Windows before 7.6, sound fetched through audio elements may be exfiltrated cross-origin. This issue was addressed with improved audio taint tracking. En Safari en versiones anteriores a la 11.1.2, iTunes en versiones anteriores a la 12.8 para Windows, iOS en versiones anteriores a la 11.4.1, tvOS en versiones anteriores a la 11.4.1 e iCloud para Windows en versiones anteriores a la 7.6, el sonido capturado mediante elementos de audio podría exfiltrarse con orígenes cruzados. Este problema se abordó mediante la mejora del rastreo de la contaminación de audio. • http://www.securitytracker.com/id/1041232 https://exchange.xforce.ibmcloud.com/vulnerabilities/146479 https://security.gentoo.org/glsa/201808-04 https://support.apple.com/HT208932 https://support.apple.com/HT208933%2C https://support.apple.com/HT208934%2C https://support.apple.com/HT208936%2C https://support.apple.com/HT208938%2C https://usn.ubuntu.com/3743-1 •