7.8

CVE-2018-4371

An out-of-bounds read was addressed with improved input validation. This issue affected versions prior to iOS 12.1, macOS Mojave 10.14.1, tvOS 12.1, watchOS 5.1.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AppleiPhone OS Version < 12.1
ApplemacOS X Version < 10.14.1
AppletvOS Version < 12.1
ApplewatchOS Version < 5.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.93% 0.559
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvd@nist.gov 6.8 8.6 6.4
AV:N/AC:M/Au:N/C:P/I:P/A:P
CWE-125 Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

https://support.apple.com/kb/HT209193
Vendor Advisory
https://support.apple.com/kb/HT209192
Vendor Advisory
https://support.apple.com/kb/HT209194
Vendor Advisory
https://support.apple.com/kb/HT209195
Vendor Advisory