CVE-2018-4248Out-of-bounds Read in Apple Tvos

CWE-125Out-of-bounds Read6 documents3 sources
Severity
7.5HIGHNVD
EPSS
2.7%
top 14.18%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
Apple Iphone OSApple MAC OS XApple Tvos+3 more
Timeline
PublishedApr 3
Latest updateMay 14

Description

An out-of-bounds read was addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages8 packages

NVDapple/tvos< 11.4.1
NVDapple/watchos< 4.3.2
NVDapple/mac_os_x< 10.13.6
Appleapple/tvos11.4.1

🔴Vulnerability Details

1
GHSA
GHSA-jv9x-cxgp-mvmj: An out-of-bounds read was addressed with improved input validation2022-05-14

📋Vendor Advisories

4
Apple
CVE-2018-4248: watchOS 4.3.22018-07-09
Apple
CVE-2018-4248: tvOS 11.4.12018-07-09
Apple
CVE-2018-4248: macOS High Sierra 10.13.6, Security Update 2018-004 Sierra, Security Update 2018-004 El Capitan2018-07-09
Apple
CVE-2018-4248: iOS 11.4.12018-07-09