High severity8.8NVD Advisory· Published Jun 8, 2018· Updated Jun 17, 2026
CVE-2018-4200
CVE-2018-4200
Description
An issue was discovered in certain Apple products. iOS before 11.3.1 is affected. Safari before 11.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site that triggers a WebCore::jsElementScrollHeightGetter use-after-free.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7- osv-coords6 versionspkg:rpm/opensuse/gtk3&distro=openSUSE%20Tumbleweedpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP3
< 2.32.4-1.1+ 5 more
- (no CPE)range: < 2.32.4-1.1
- (no CPE)range: < 2.20.3-2.23.8
- (no CPE)range: < 2.20.3-2.23.8
- (no CPE)range: < 2.20.3-2.23.8
- (no CPE)range: < 2.20.3-2.23.8
- (no CPE)range: < 2.20.3-2.23.8
Patches
Vulnerability mechanics
References
11- bugs.chromium.org/p/project-zero/issues/detailnvdExploitIssue TrackingThird Party Advisory
- www.exploit-db.com/exploits/44566/nvdExploitThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/103961nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1040743nvdThird Party AdvisoryVDB Entry
- security.gentoo.org/glsa/201808-04nvdThird Party Advisory
- support.apple.com/HT208741nvdVendor Advisory
- support.apple.com/HT208743nvdVendor Advisory
- support.apple.com/HT208850nvdVendor Advisory
- support.apple.com/HT208852nvdVendor Advisory
- support.apple.com/HT208853nvdVendor Advisory
- usn.ubuntu.com/3640-1/nvdThird Party Advisory
News mentions
0No linked articles in our index yet.