cbcvebase.
CVE-2018-4377
published 2019-04-03

CVE-2018-4377: A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue affected versions prior to iOS 12.1, watchOS…

medium6.1CVSS 3.0
AVNACLPRNUIRSCCLILAN
A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.

Affected

10 ranges
VendorProductVersion rangeFixed in
appleicloud< 7.87.8
appleicloud_for_windows
appleios
appleiphone_os< 12.112.1
appleitunes< 12.9.112.9.1
appleitunes_12.9.1_for_windows
applesafari< 12.0.112.0.1
applesafari
applewatchos< 5.15.1
applewatchos