Apple Icloud For Windows vulnerabilities

CVE-2018-4319 [HIGH] CVE-2018-4319: iCloud for Windows 7.7 Apple Security Update: About the security content of iCloud for Windows 7.7 Product: iCloud for Windows Version: 7.7 CVE: CVE-2018-4319 Component: WebKit Impact: A malicious website may cause unexepected cross-origin behavior Description: A cross-origin issue existed with "iframe" elements. This was addressed with improved tracking of security origins.

CVE-2018-4315 [HIGH] CVE-2018-4315: iCloud for Windows 7.7 Apple Security Update: About the security content of iCloud for Windows 7.7 Product: iCloud for Windows Version: 7.7 CVE: CVE-2018-4315 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A use after free issue was addressed with improved memory management.

CVE-2018-4414 [HIGH] CVE-2018-4414: iCloud for Windows 7.7 Apple Security Update: About the security content of iCloud for Windows 7.7 Product: iCloud for Windows Version: 7.7 CVE: CVE-2018-4414 Component: CoreFoundation Impact: An application may be able to gain elevated privileges Description: A memory corruption issue was addressed with improved input validation.

CVE-2018-4359 [HIGH] CVE-2018-4359: iCloud for Windows 7.7 Apple Security Update: About the security content of iCloud for Windows 7.7 Product: iCloud for Windows Version: 7.7 CVE: CVE-2018-4359 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2018-4311 [HIGH] CVE-2018-4311: iCloud for Windows 7.7 Apple Security Update: About the security content of iCloud for Windows 7.7 Product: iCloud for Windows Version: 7.7 CVE: CVE-2018-4311 Component: WebKit Impact: Cross-origin SecurityErrors includes the accessed frame’s origin Description: The issue was addressed by removing origin information.

CVE-2018-4299 [HIGH] CVE-2018-4299: iCloud for Windows 7.7 Apple Security Update: About the security content of iCloud for Windows 7.7 Product: iCloud for Windows Version: 7.7 CVE: CVE-2018-4299 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2018-4361 [HIGH] CVE-2018-4361: iCloud for Windows 7.7 Apple Security Update: About the security content of iCloud for Windows 7.7 Product: iCloud for Windows Version: 7.7 CVE: CVE-2018-4361 Component: WebKit Impact: Unexpected interaction causes an ASSERT failure Description: A memory consumption issue was addressed with improved memory handling.

CVE-2018-4412 [HIGH] CVE-2018-4412: iCloud for Windows 7.7 Apple Security Update: About the security content of iCloud for Windows 7.7 Product: iCloud for Windows Version: 7.7 CVE: CVE-2018-4412 Component: CoreFoundation Impact: A malicious application may be able to elevate privileges Description: A memory corruption issue was addressed with improved input validation.

CVE-2018-4318 [HIGH] CVE-2018-4318: iCloud for Windows 7.7 Apple Security Update: About the security content of iCloud for Windows 7.7 Product: iCloud for Windows Version: 7.7 CVE: CVE-2018-4318 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A use after free issue was addressed with improved memory management.

CVE-2018-4345 [MEDIUM] CVE-2018-4345: iCloud for Windows 7.7 Apple Security Update: About the security content of iCloud for Windows 7.7 Product: iCloud for Windows Version: 7.7 CVE: CVE-2018-4345 Component: WebKit Impact: A malicious website may exfiltrate image data cross-origin Description: A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation.

CVE-2018-4309 [MEDIUM] CVE-2018-4309: iCloud for Windows 7.7 Apple Security Update: About the security content of iCloud for Windows 7.7 Product: iCloud for Windows Version: 7.7 CVE: CVE-2018-4309 Component: WebKit Impact: A malicious website may be able to execute scripts in the context of another website Description: A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation.

CVE-2018-4284 [HIGH] CVE-2018-4284: iCloud for Windows 7.6 Apple Security Update: About the security content of iCloud for Windows 7.6 Product: iCloud for Windows Version: 7.6 CVE: CVE-2018-4284 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A type confusion issue was addressed with improved memory handling.

CVE-2018-4265 [HIGH] CVE-2018-4265: iCloud for Windows 7.6 Apple Security Update: About the security content of iCloud for Windows 7.6 Product: iCloud for Windows Version: 7.6 CVE: CVE-2018-4265 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2018-4267 [HIGH] CVE-2018-4267: iCloud for Windows 7.6 Apple Security Update: About the security content of iCloud for Windows 7.6 Product: iCloud for Windows Version: 7.6 CVE: CVE-2018-4267 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2018-4272 [HIGH] CVE-2018-4272: iCloud for Windows 7.6 Apple Security Update: About the security content of iCloud for Windows 7.6 Product: iCloud for Windows Version: 7.6 CVE: CVE-2018-4272 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2018-4264 [HIGH] CVE-2018-4264: iCloud for Windows 7.6 Apple Security Update: About the security content of iCloud for Windows 7.6 Product: iCloud for Windows Version: 7.6 CVE: CVE-2018-4264 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2018-4261 [HIGH] CVE-2018-4261: iCloud for Windows 7.6 Apple Security Update: About the security content of iCloud for Windows 7.6 Product: iCloud for Windows Version: 7.6 CVE: CVE-2018-4261 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2018-4263 [HIGH] CVE-2018-4263: iCloud for Windows 7.6 Apple Security Update: About the security content of iCloud for Windows 7.6 Product: iCloud for Windows Version: 7.6 CVE: CVE-2018-4263 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2018-4269 [HIGH] CVE-2018-4269: iCloud for Windows 7.6 Apple Security Update: About the security content of iCloud for Windows 7.6 Product: iCloud for Windows Version: 7.6 CVE: CVE-2018-4269 Component: CoreCrypto Impact: A malicious application may be able to break out of its sandbox Description: A memory corruption issue was addressed with improved input validation.

CVE-2018-4262 [HIGH] CVE-2018-4262: iCloud for Windows 7.6 Apple Security Update: About the security content of iCloud for Windows 7.6 Product: iCloud for Windows Version: 7.6 CVE: CVE-2018-4262 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.