Executive Summary

Informations
NameCVE-2018-4407First vendor Publication2019-04-03
VendorCveLast vendor Modification2019-04-05

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:S/C:P/I:P/A:P)
Cvss Base Score6.5Attack RangeNetwork
Cvss Impact Score6.4Attack ComplexityLow
Cvss Expoit Score8AuthenticationRequires single instance
Calculate full CVSS 2.0 Vectors scores

Detail

A memory corruption issue was addressed with improved validation. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4407

CWE : Common Weakness Enumeration

%idName
100 %CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer

CPE : Common Platform Enumeration

TypeDescriptionCount
Os164
Os115
Os63
Os23

Nessus® Vulnerability Scanner

DateDescription
2018-10-31Name : The remote host is missing a macOS or Mac OS X security update that fixes mul...
File : macosx_SecUpd2018-005.nasl - Type : ACT_GATHER_INFO
2018-10-31Name : The remote host is missing a macOS security update that fixes multiple vulner...
File : macosx_SecUpd_10_13_6_2018-002.nasl - Type : ACT_GATHER_INFO
2018-10-18Name : The remote host is missing a macOS update that fixes multiple security vulner...
File : macos_10_14.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
MISC https://support.apple.com/kb/HT209106
https://support.apple.com/kb/HT209107
https://support.apple.com/kb/HT209108
https://support.apple.com/kb/HT209139
https://support.apple.com/kb/HT209193

Alert History

If you want to see full details history, please login or register.
0
1
DateInformations
2019-04-05 21:19:16
  • Multiple Updates
2019-04-04 00:19:41
  • First insertion