Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2018-4366Improper Restriction of Operations within the Bounds of a Memory Buffer in Apple Iphone OS

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer6 documents6 sources
Severity
7.5HIGHNVD
EPSS
10.9%
top 6.59%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Apple Iphone OSApple IOS
Timeline
PublishedApr 3
Latest updateMay 13

Description

A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12.1.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

NVDapple/iphone_os< 12.1
Appleapple/ios12.1

🔴Vulnerability Details

2
GHSA
GHSA-3x3v-84v2-gwh2: A memory corruption issue was addressed with improved input validation2022-05-13
Project0
Adventures in Video Conferencing Part 2: Fun with FaceTime - Project Zero2018-12-01

💥Exploits & PoCs

1
Exploit-DB
FaceTime - 'VCPDecompressionDecodeFrame' Memory Corruption2018-11-06

📋Vendor Advisories

1
Apple
CVE-2018-4366: iOS 12.12018-10-30

💬Community

1
Bugzilla
CVE-2018-11751 puppet-agent: Puppet Agent does not properly verify SSL connection when downloading a CRL2020-01-06