Unrated severityNVD Advisory· Published Jun 8, 2018· Updated Aug 5, 2024

CVE-2018-4246

Description

An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code via a crafted web site that leverages type confusion.

Affected products

osv-coords5 versions
pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3 pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3 pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3 pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3 pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP3
< 2.20.3-2.23.8+ 4 more
- (no CPE)range: < 2.20.3-2.23.8
- (no CPE)range: < 2.20.3-2.23.8
- (no CPE)range: < 2.20.3-2.23.8
- (no CPE)range: < 2.20.3-2.23.8
- (no CPE)range: < 2.20.3-2.23.8

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

usn.ubuntu.com/3743-1/mitrevendor-advisoryx_refsource_UBUNTU
www.securitytracker.com/id/1041029mitrevdb-entryx_refsource_SECTRACK
support.apple.com/HT208848mitrex_refsource_CONFIRM
support.apple.com/HT208850mitrex_refsource_CONFIRM
support.apple.com/HT208851mitrex_refsource_CONFIRM
support.apple.com/HT208852mitrex_refsource_CONFIRM
support.apple.com/HT208853mitrex_refsource_CONFIRM
support.apple.com/HT208854mitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.004
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000