CVE-2018-4383
published 2019-04-03CVE-2018-4383: A memory corruption issue was addressed with improved state management. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5.
PriorityP434high7.8CVSS 3.0
AVLACLPRNUIRSUCHIHAH
EPSS
0.18%
38.8th percentile
A memory corruption issue was addressed with improved state management. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios | — | — |
| apple | iphone_os | < 12.0 | 12.0 |
| apple | mac_os_x | < 10.14 | 10.14 |
| apple | macos_mojave | — | — |
| apple | tvos | < 12 | 12 |
| apple | tvos | — | — |
| apple | watchos | < 5.0 | 5.0 |
| apple | watchos_5 | — | — |
CVSS provenance
nvdv3.07.8HIGHCVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
Apple
CVE-2018-4383: macOS Mojave 10.14
vendor_apple·2018-09-24·CVSS 7.8
CVE-2018-4383 [HIGH] CVE-2018-4383: macOS Mojave 10.14
Apple Security Update: About the security content of macOS Mojave 10.14
Product: macOS Mojave
Version: 10.14
CVE: CVE-2018-4383
Component: IOKit
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: A memory corruption issue was addressed with improved state management.
Apple
CVE-2018-4383: tvOS 12
vendor_apple·2018-09-17·CVSS 7.8
CVE-2018-4383 [HIGH] CVE-2018-4383: tvOS 12
Apple Security Update: About the security content of tvOS 12
Product: tvOS
Version: 12
CVE: CVE-2018-4383
Component: IOKit
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: A memory corruption issue was addressed with improved state management.
Apple
CVE-2018-4383: iOS 12
vendor_apple·2018-09-17·CVSS 7.8
CVE-2018-4383 [HIGH] CVE-2018-4383: iOS 12
Apple Security Update: About the security content of iOS 12
Product: iOS
Version: 12
CVE: CVE-2018-4383
Component: IOKit
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: A memory corruption issue was addressed with improved state management.
Apple
CVE-2018-4383: watchOS 5
vendor_apple·2018-09-17·CVSS 7.8
CVE-2018-4383 [HIGH] CVE-2018-4383: watchOS 5
Apple Security Update: About the security content of watchOS 5
Product: watchOS 5
CVE: CVE-2018-4383
Component: IOKit
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: A memory corruption issue was addressed with improved state management.
GHSA
GHSA-9r4q-cm6h-cc5p: A memory corruption issue was addressed with improved state management
ghsa_unreviewed·2022-05-14
CVE-2018-4383 [HIGH] CWE-119 GHSA-9r4q-cm6h-cc5p: A memory corruption issue was addressed with improved state management
A memory corruption issue was addressed with improved state management. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2019-04-03
Published