CVE-2018-4285Incorrect Type Conversion or Cast in Apple Macos High Sierra 10.13.6 Security Update 2018-004 Sierra Security Update 2018-0

CWE-704Incorrect Type Conversion or Cast3 documents3 sources
Severity
7.8HIGHNVD
EPSS
0.2%
top 64.34%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Apple MAC OS XApple Macos High Sierra 10.13.6 Security Update 2018-004 Sierra Security Update 2018-0
Timeline
PublishedApr 3
Latest updateMay 14

Description

A type confusion issue was addressed with improved memory handling. This issue affected versions prior to macOS High Sierra 10.13.6.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

NVDapple/mac_os_x< 10.13.6

🔴Vulnerability Details

1
GHSA
GHSA-g593-6gcm-gm4q: A type confusion issue was addressed with improved memory handling2022-05-14

📋Vendor Advisories

1
Apple
CVE-2018-4285: macOS High Sierra 10.13.6, Security Update 2018-004 Sierra, Security Update 2018-004 El Capitan2018-07-09