[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2018-4409Date: (C)2019-06-07   (M)2023-12-22


A resource exhaustion issue was addressed with improved input validation. This issue affected versions prior to iOS 12.1, tvOS 12.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V3 Severity:CVSS V2 Severity:
CVSS Score : 6.5CVSS Score : 4.3
Exploit Score: 2.8Exploit Score: 8.6
Impact Score: 3.6Impact Score: 2.9
 
CVSS V3 Metrics:CVSS V2 Metrics:
Attack Vector: NETWORKAccess Vector: NETWORK
Attack Complexity: LOWAccess Complexity: MEDIUM
Privileges Required: NONEAuthentication: NONE
User Interaction: REQUIREDConfidentiality: NONE
Scope: UNCHANGEDIntegrity: NONE
Confidentiality: NONEAvailability: PARTIAL
Integrity: NONE 
Availability: HIGH 
  
Reference:
https://support.apple.com/kb/HT209192
https://support.apple.com/kb/HT209194
https://support.apple.com/kb/HT209196
https://support.apple.com/kb/HT209197
https://support.apple.com/kb/HT209198

CPE    4
cpe:/a:apple:itunes
cpe:/o:microsoft:windows:-
cpe:/a:apple:icloud
cpe:/a:apple:safari
...
CWE    1
CWE-400
OVAL    5
oval:org.secpod.oval:def:48584
oval:org.secpod.oval:def:48599
oval:org.secpod.oval:def:48587
oval:org.secpod.oval:def:48586
...

© SecPod Technologies