Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).
CVE-2018-4442 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Apple Icloud
CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer14 documents8 sources
Severity
8.8HIGHNVD
OSV9.8
EPSS
18.7%
top 4.72%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
Timeline
PublishedApr 3
Latest updateMay 14
Description
A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.
CVSS vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9
Affected Packages7 packages
🔴Vulnerability Details
5GHSA▶
GHSA-vg9h-c983-qq74: A memory corruption issue was addressed with improved memory handling↗2022-05-14
CVEList
▶