CVE-2018-4211

Published: 08/06/2018 Updated: 17/07/2018

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 605

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

An issue exists in certain Apple products. iOS prior to 11.4 is affected. macOS prior to 10.13.5 is affected. tvOS prior to 11.4 is affected. watchOS prior to 4.3.1 is affected. The issue involves the "FontParser" component. It allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted font file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple mac os x
apple iphone os
apple apple tv
apple watchos

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2018-7-23-3 Additional information for APPLE-SA-2018-06-01-4 iOS 114 iOS 114 addresses the following: Bluetooth Available for: iPhone 5s and later, iPad Air and later, and iPod touch 6th generation Impact: A malicious application may be able to elevate privileges Description: A buffer ov ...

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2018-7-23-2 Additional information for APPLE-SA-2018-06-01-1 macOS High Sierra 10135, Security Update 2018-003 Sierra, Security Update 2018-003 El Capitan macOS High Sierra 10135, Security Update 2018-003 Sierra, and Security Update 2018-003 El Capitan address the following: Accessibil ...

CWE-119 https://support.apple.com/HT208851 https://support.apple.com/HT208850 https://support.apple.com/HT208849 https://support.apple.com/HT208848 http://www.securitytracker.com/id/1041027 https://nvd.nist.gov http://seclists.org/fulldisclosure/2018/Jul/81

CVE-2018-4211

Vulnerability Summary

Mailing Lists

References

Vulmon Search

About

Products

Connect