Medium severity6.5NVD Advisory· Published Apr 3, 2018· Updated Jun 17, 2026
CVE-2018-4117
CVE-2018-4117
Description
An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. watchOS before 4.3 is affected. The issue involves the fetch API in the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
10- Range: <11.1
- Range: <7.4
- Range: <11.3
- osv-coords7 versionspkg:rpm/opensuse/chromium&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/gtk3&distro=openSUSE%20Tumbleweedpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP3
< 93.0.4577.82-1.1+ 6 more
- (no CPE)range: < 93.0.4577.82-1.1
- (no CPE)range: < 2.32.4-1.1
- (no CPE)range: < 2.20.3-2.23.8
- (no CPE)range: < 2.20.3-2.23.8
- (no CPE)range: < 2.20.3-2.23.8
- (no CPE)range: < 2.20.3-2.23.8
- (no CPE)range: < 2.20.3-2.23.8
Patches
Vulnerability mechanics
References
12- www.securityfocus.com/bid/104887nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1040604nvdThird Party AdvisoryVDB Entry
- access.redhat.com/errata/RHSA-2018:2282nvdThird Party Advisory
- security.gentoo.org/glsa/201808-01nvdThird Party Advisory
- security.gentoo.org/glsa/201808-04nvdThird Party Advisory
- support.apple.com/HT208693nvdVendor Advisory
- support.apple.com/HT208694nvdVendor Advisory
- support.apple.com/HT208695nvdVendor Advisory
- support.apple.com/HT208696nvdVendor Advisory
- support.apple.com/HT208697nvdVendor Advisory
- usn.ubuntu.com/3635-1/nvdThird Party Advisory
- www.debian.org/security/2018/dsa-4256nvdThird Party Advisory
News mentions
0No linked articles in our index yet.