CVE-2018-4431
published 2019-04-03CVE-2018-4431: A memory initialization issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1…
PriorityP427medium5.5CVSS 3.0
AVLACLPRLUINSUCHINAN
EPSS
1.98%
83.9th percentile
A memory initialization issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios | — | — |
| apple | iphone_os | < 12.1.1 | 12.1.1 |
| apple | mac_os_x | < 10.14.2 | 10.14.2 |
| apple | macos_mojave_10.14.2_security_update_2018-003_high_sierra_security_update_2018-0 | — | — |
| apple | tvos | < 12.1.1 | 12.1.1 |
| apple | tvos | — | — |
| apple | watchos | < 5.1.2 | 5.1.2 |
| apple | watchos | — | — |
CVSS provenance
nvdv3.05.5MEDIUMCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
nvdv2.04.9MEDIUMAV:L/AC:L/Au:N/C:C/I:N/A:N
Apple
CVE-2018-4431: watchOS 5.1.2
vendor_apple·2018-12-06·CVSS 5.5
CVE-2018-4431 [MEDIUM] CVE-2018-4431: watchOS 5.1.2
Apple Security Update: About the security content of watchOS 5.1.2
Product: watchOS
Version: 5.1.2
CVE: CVE-2018-4431
Component: Kernel
Impact: A local user may be able to read kernel memory
Description: A memory initialization issue was addressed with improved memory handling.
Apple
CVE-2018-4431: macOS Mojave 10.14.2, Security Update 2018-003 High Sierra, Security Update 2018-006 Sierra
vendor_apple·2018-12-05·CVSS 5.5
CVE-2018-4431 [MEDIUM] CVE-2018-4431: macOS Mojave 10.14.2, Security Update 2018-003 High Sierra, Security Update 2018-006 Sierra
Apple Security Update: About the security content of macOS Mojave 10.14.2, Security Update 2018-003 High Sierra, Security Update 2018-006 Sierra
Product: macOS Mojave 10.14.2, Security Update 2018-003 High Sierra, Security Update 2018-006 Sierra
CVE: CVE-2018-4431
Component: Kernel
Impact: A local user may be able to read kernel memory
Description: A memory initialization issue was addressed with improved memory handling.
Apple
CVE-2018-4431: tvOS 12.1.1
vendor_apple·2018-12-05·CVSS 5.5
CVE-2018-4431 [MEDIUM] CVE-2018-4431: tvOS 12.1.1
Apple Security Update: About the security content of tvOS 12.1.1
Product: tvOS
Version: 12.1.1
CVE: CVE-2018-4431
Component: Kernel
Impact: A local user may be able to read kernel memory
Description: A memory initialization issue was addressed with improved memory handling.
Apple
CVE-2018-4431: iOS 12.1.1
vendor_apple·2018-12-05·CVSS 5.5
CVE-2018-4431 [MEDIUM] CVE-2018-4431: iOS 12.1.1
Apple Security Update: About the security content of iOS 12.1.1
Product: iOS
Version: 12.1.1
CVE: CVE-2018-4431
Component: Kernel
Impact: A local user may be able to read kernel memory
Description: A memory initialization issue was addressed with improved memory handling.
GHSA
GHSA-pfxg-6jmv-fx7w: A memory initialization issue was addressed with improved memory handling
ghsa_unreviewed·2022-05-14
CVE-2018-4431 [MEDIUM] CWE-200 GHSA-pfxg-6jmv-fx7w: A memory initialization issue was addressed with improved memory handling
A memory initialization issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2019-04-03
Published