CVE-2018-4408
published 2019-04-03CVE-2018-4408: A memory corruption issue was addressed with improved input validation This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5.
PriorityP335high7.8CVSS 3.0
AVLACLPRNUIRSUCHIHAH
EPSS
0.19%
41.0th percentile
A memory corruption issue was addressed with improved input validation This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios | — | — |
| apple | iphone_os | < 12.0 | 12.0 |
| apple | mac_os_x | < 10.14 | 10.14 |
| apple | macos_mojave | — | — |
| apple | macos_mojave_10.14.1_security_update_2018-002_high_sierra_security_update_2018-0 | — | — |
| apple | tvos | < 12 | 12 |
| apple | tvos | — | — |
| apple | watchos | < 5.0 | 5.0 |
| apple | watchos_5 | — | — |
CVSS provenance
nvdv3.07.8HIGHCVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
Apple
CVE-2018-4408: macOS Mojave 10.14.1, Security Update 2018-002 High Sierra, Security Update 2018-005 Sierra
vendor_apple·2018-10-30·CVSS 7.8
CVE-2018-4408 [HIGH] CVE-2018-4408: macOS Mojave 10.14.1, Security Update 2018-002 High Sierra, Security Update 2018-005 Sierra
Apple Security Update: About the security content of macOS Mojave 10.14.1, Security Update 2018-002 High Sierra, Security Update 2018-005 Sierra
Product: macOS Mojave 10.14.1, Security Update 2018-002 High Sierra, Security Update 2018-005 Sierra
CVE: CVE-2018-4408
Component: IOHIDFamily
Impact: A malicious application may be able to execute arbitrary code with kernel privileges
Description: A memory corruption issue was addressed with improved input validation.
Apple
CVE-2018-4408: macOS Mojave 10.14
vendor_apple·2018-09-24·CVSS 7.8
CVE-2018-4408 [HIGH] CVE-2018-4408: macOS Mojave 10.14
Apple Security Update: About the security content of macOS Mojave 10.14
Product: macOS Mojave
Version: 10.14
CVE: CVE-2018-4408
Component: IOHIDFamily
Impact: A malicious application may be able to execute arbitrary code with kernel privileges
Description: A memory corruption issue was addressed with improved input validation.
Apple
CVE-2018-4408: iOS 12
vendor_apple·2018-09-17·CVSS 7.8
CVE-2018-4408 [HIGH] CVE-2018-4408: iOS 12
Apple Security Update: About the security content of iOS 12
Product: iOS
Version: 12
CVE: CVE-2018-4408
Component: IOHIDFamily
Impact: A malicious application may be able to execute arbitrary code with kernel privileges
Description: A memory corruption issue was addressed with improved input validation.
Apple
CVE-2018-4408: tvOS 12
vendor_apple·2018-09-17·CVSS 7.8
CVE-2018-4408 [HIGH] CVE-2018-4408: tvOS 12
Apple Security Update: About the security content of tvOS 12
Product: tvOS
Version: 12
CVE: CVE-2018-4408
Component: IOHIDFamily
Impact: A malicious application may be able to execute arbitrary code with kernel privileges
Description: A memory corruption issue was addressed with improved input validation.
Apple
CVE-2018-4408: watchOS 5
vendor_apple·2018-09-17·CVSS 7.8
CVE-2018-4408 [HIGH] CVE-2018-4408: watchOS 5
Apple Security Update: About the security content of watchOS 5
Product: watchOS 5
CVE: CVE-2018-4408
Component: IOHIDFamily
Impact: A malicious application may be able to execute arbitrary code with kernel privileges
Description: A memory corruption issue was addressed with improved input validation.
GHSA
GHSA-p3gx-4f5w-9pm4: A memory corruption issue was addressed with improved input validation This issue affected versions prior to iOS 12, macOS Mojave 10
ghsa_unreviewed·2022-05-14
CVE-2018-4408 [HIGH] CWE-119 GHSA-p3gx-4f5w-9pm4: A memory corruption issue was addressed with improved input validation This issue affected versions prior to iOS 12, macOS Mojave 10
A memory corruption issue was addressed with improved input validation This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://support.apple.com/kb/HT209106https://support.apple.com/kb/HT209107https://support.apple.com/kb/HT209108https://support.apple.com/kb/HT209139https://support.apple.com/kb/HT209193https://support.apple.com/kb/HT209106https://support.apple.com/kb/HT209107https://support.apple.com/kb/HT209108https://support.apple.com/kb/HT209139https://support.apple.com/kb/HT209193
2019-04-03
Published