CVE-2018-4444: A logic issue was addressed with improved state management. This issue is fixed in Safari 12.0.2, iOS 12.1.1, tvOS 12.1.1, iTunes 12.9.2 for Windows…

medium6.5CVSS 3.1

AVNACLPRNUIRSUCHINAN

A logic issue was addressed with improved state management. This issue is fixed in Safari 12.0.2, iOS 12.1.1, tvOS 12.1.1, iTunes 12.9.2 for Windows. Processing maliciously crafted web content may disclose sensitive user information.

Affected

12 ranges

Vendor	Product	Version range	Fixed in
apple	ios	—	—
apple	ios	>= unspecified < 12.1	12.1
apple	iphone_os	< 12.1.1	12.1.1
apple	itunes	< 12.9.2	12.9.2
apple	itunes_12.9.2_for_windows	—	—
apple	itunes_for_windows	>= unspecified < 12.9	12.9
apple	safari	< 12.0.2	12.0.2
apple	safari	—	—
apple	safari	>= unspecified < 12.0	12.0
apple	tvos	< 12.1.1	12.1.1
apple	tvos	—	—
apple	tvos	>= unspecified < 12.1	12.1