Lucene search

K

204 matches found

CVE
CVE
added 2019/04/03 6:29 p.m.72 views

CVE-2018-4408

A memory corruption issue was addressed with improved input validation This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5.

9.3CVSS7.4AI score0.00204EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.72 views

CVE-2019-8516

A validation issue was addressed with improved logic. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. Processing a maliciously crafted string may lead to a denial of service.

7.5CVSS6.8AI score0.00642EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.72 views

CVE-2019-8527

A buffer overflow was addressed with improved size validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A remote attacker may be able to cause unexpected system termination or corrupt kernel memory.

9.4CVSS8AI score0.00967EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.71 views

CVE-2018-4332

A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5.

10CVSS8.4AI score0.00992EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.71 views

CVE-2018-4337

A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5.

9.3CVSS7.9AI score0.00185EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.71 views

CVE-2019-8546

An access issue was addressed with additional sandbox restrictions. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, watchOS 5.2. A local user may be able to view sensitive user information.

5.5CVSS5.4AI score0.00148EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.71 views

CVE-2019-8549

Multiple input validation issues existed in MIG generated code. These issues were addressed with improved validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to execute arbitrary code with system privileges.

9.3CVSS7.9AI score0.00456EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.70 views

CVE-2018-4293

A cookie management issue was addressed with improved checks. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2, iTunes 12.8 for Windows, iCloud for Windows 7.6.

5.3CVSS5.7AI score0.00543EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.70 views

CVE-2018-4311

The issue was addressed by removing origin information. This issue affected versions prior to iOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

8.1CVSS7.6AI score0.00443EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.70 views

CVE-2018-4412

A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5, iTunes 12.9 for Windows, iCloud for Windows 7.7.

7.8CVSS7.5AI score0.00402EPSS
CVE
CVE
added 2019/03/05 4:29 p.m.70 views

CVE-2019-6230

A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 12.1.3,macOS Mojave 10.14.3,tvOS 12.1.2,watchOS 5.1.3. A malicious application may be able to break out of its sandbox.

8.6CVSS6.8AI score0.00352EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.70 views

CVE-2019-8517

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. Processing a maliciously crafted font may result in the disclosure of process memory.

6.5CVSS6.1AI score0.00478EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.70 views

CVE-2019-8540

A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to determine kernel memory layout.

7.1CVSS5.4AI score0.0085EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.70 views

CVE-2019-8545

A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A local user may be able to cause unexpected system termination or read kernel memory.

7.1CVSS6.5AI score0.00171EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.70 views

CVE-2019-8568

A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1. A local user may be able to modify protected parts of the file system.

5.5CVSS5.4AI score0.00063EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.70 views

CVE-2019-8657

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3. Parsing a maliciously crafted office document may lead to an unexpected application termination or arbitrary code execution.

8.8CVSS7.8AI score0.00645EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.70 views

CVE-2019-8794

A validation issue was addressed with improved input sanitization. This issue is fixed in iOS 13.2 and iPadOS 13.2, macOS Catalina 10.15.1, tvOS 13.2, watchOS 6.1. An application may be able to read restricted memory.

5.5CVSS5.3AI score0.00359EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.69 views

CVE-2018-4400

A validation issue was addressed with improved logic. This issue affected versions prior to iOS 12.1, macOS Mojave 10.14.1, watchOS 5.1.

5.5CVSS5.4AI score0.00196EPSS
CVE
CVE
added 2019/03/05 4:29 p.m.69 views

CVE-2019-6202

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, watchOS 5.1.3. A malicious application may be able to elevate privileges.

7.8CVSS6.3AI score0.00259EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.69 views

CVE-2019-8747

A memory corruption vulnerability was addressed with improved locking. This issue is fixed in watchOS 6.1. An application may be able to execute arbitrary code with kernel privileges.

9.3CVSS8AI score0.00298EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.68 views

CVE-2018-4377

A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.

6.1CVSS6AI score0.00643EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.68 views

CVE-2019-8511

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, watchOS 5.2. A malicious application may be able to elevate privileges.

7.8CVSS7.2AI score0.00513EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.68 views

CVE-2019-8648

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3. A remote attacker may be able to cause arbitrary code execution.

9.8CVSS8.3AI score0.01127EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.68 views

CVE-2019-8665

A denial of service issue was addressed with improved validation. This issue is fixed in iOS 12.4, watchOS 5.3. A remote attacker may cause an unexpected application termination.

7.5CVSS6.9AI score0.00683EPSS
CVE
CVE
added 2019/03/05 4:29 p.m.67 views

CVE-2019-6219

A denial of service issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, watchOS 5.1.3. Processing a maliciously crafted message may lead to a denial of service.

7.5CVSS6.9AI score0.01042EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.65 views

CVE-2018-4336

A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5.

9.3CVSS7.9AI score0.00185EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.65 views

CVE-2018-4427

A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to: iOS 12.1, watchOS 5.1.2, tvOS 12.1.1, macOS High Sierra 10.13.6 Security Update 2018-003 High Sierra, macOS Sierra 10.12.6 Security Update 2018-006.

9.3CVSS7.2AI score0.00185EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.65 views

CVE-2019-8541

A privacy issue existed in motion sensor calibration. This issue was addressed with improved motion sensor processing. This issue is fixed in iOS 12.2, watchOS 5.2. A malicious app may be able to track users between installs.

3.3CVSS4.7AI score0.00149EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.64 views

CVE-2019-8510

An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to determine kernel memory layout.

5.5CVSS5.3AI score0.00068EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.64 views

CVE-2019-8620

A user privacy issue was addressed by removing the broadcast MAC address. This issue is fixed in iOS 12.3, tvOS 12.3, watchOS 5.2.1. A device may be passively tracked by its WiFi MAC address.

7.5CVSS7.1AI score0.00386EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.63 views

CVE-2019-8682

The issue was addressed with improved UI handling. This issue is fixed in iOS 12.4, watchOS 5.3. A user may inadvertently complete an in-app purchase while on the lock screen.

2.4CVSS4.5AI score0.00045EPSS
CVE
CVE
added 2019/01/11 6:29 p.m.62 views

CVE-2018-4189

In iOS before 11.2.5, macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, watchOS before 4.2.2, and tvOS before 11.2.5, a memory corruption issue exists and was addressed with improved memory handling.

10CVSS8.6AI score0.00757EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.62 views

CVE-2018-4248

An out-of-bounds read was addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2.

7.5CVSS5.8AI score0.02821EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.61 views

CVE-2018-4343

A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5.

9.3CVSS7.9AI score0.03814EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.60 views

CVE-2019-8593

A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.3, tvOS 12.3, watchOS 5.2.1. An application may be able to execute arbitrary code with system privileges.

9.3CVSS8.3AI score0.00384EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.59 views

CVE-2018-4269

A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2, iTunes 12.8 for Windows, iCloud for Windows 7.6.

8.6CVSS6.3AI score0.00305EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.59 views

CVE-2018-4271

Multiple memory corruption issues were addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6.

6.5CVSS7.4AI score0.00333EPSS
CVE
CVE
added 2019/01/11 6:29 p.m.58 views

CVE-2018-4298

In macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, a permissions issue existed in Remote Management. This issue was addressed through improved permission validation.

10CVSS8.8AI score0.00334EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.56 views

CVE-2018-4435

A logic issue was addressed with improved restrictions. This issue affected versions prior to iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2.

7.8CVSS6.8AI score0.02792EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.56 views

CVE-2019-8626

An input validation issue was addressed with improved input validation. This issue is fixed in iOS 12.3, watchOS 5.2.1. Processing a maliciously crafted message may lead to a denial of service.

6.5CVSS6.4AI score0.00447EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.53 views

CVE-2018-4460

A denial of service issue was addressed by removing the vulnerable code. This issue affected versions prior to iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2.

6.5CVSS6.1AI score0.00702EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.52 views

CVE-2018-4303

An input validation issue was addressed with improved input validation. This issue affected versions prior to macOS Mojave 10.14, iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2.

7.8CVSS6.8AI score0.00259EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.52 views

CVE-2018-4447

A memory corruption issue was addressed with improved state management. This issue affected versions prior to iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2.

9.3CVSS7.2AI score0.00185EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.52 views

CVE-2019-8659

This issue was addressed with improved checks. This issue is fixed in watchOS 5.3. Users removed from an iMessage conversation may still be able to alter state.

7.5CVSS7AI score0.00241EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.51 views

CVE-2018-4305

An input validation issue was addressed with improved input validation. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5.

6.5CVSS6.8AI score0.00087EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.51 views

CVE-2018-4363

An input validation issue existed in the kernel. This issue was addressed with improved input validation. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5.

7.1CVSS6.2AI score0.00247EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.51 views

CVE-2018-4436

A certificate validation issue existed in configuration profiles. This was addressed with additional checks. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2.

7.5CVSS7AI score0.00126EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.49 views

CVE-2018-4431

A memory initialization issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2.

5.5CVSS5.5AI score0.0209EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.48 views

CVE-2018-4290

A denial of service issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, watchOS 4.3.2.

5.9CVSS5.9AI score0.00367EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.46 views

CVE-2018-4282

An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2.

5.5CVSS5.7AI score0.00068EPSS
Total number of security vulnerabilities204