Memory Corruption Vulnerability in Apple iOS and macOS Products
CVE-2018-4189

9.8CRITICAL

Key Information:

Vendor
Apple
Status
iPhone OS
Apple Tv
Watch OS
Mac Os X
Vendor
CVE Published:
11 January 2019

Summary

Prior to the release of specific updates, certain Apple operating systems experienced a memory corruption issue that could potentially be exploited. This vulnerability was found in iOS, macOS, watchOS, and tvOS, leading to inadequate memory handling. The issue was addressed by enhancing memory management, ensuring devices are protected against potential exploits. Users are advised to update their devices to the latest versions to mitigate this risk.

References

https://support.apple.com/HT208462
x_refsource_CONFIRM
https://support.apple.com/HT208463
x_refsource_MISC
https://support.apple.com/HT208464
x_refsource_MISC

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.