Medium severity4.3NVD Advisory· Published Jan 11, 2019· Updated Jun 17, 2026
CVE-2018-4278
CVE-2018-4278
Description
In Safari before 11.1.2, iTunes before 12.8 for Windows, iOS before 11.4.1, tvOS before 11.4.1, iCloud for Windows before 7.6, sound fetched through audio elements may be exfiltrated cross-origin. This issue was addressed with improved audio taint tracking.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
22- Range: <11.4.1
- Range: <11.1.2
- Range: <12.8
- Range: <11.4.1
- Range: <7.6
- osv-coords17 versionspkg:rpm/suse/webkit2gtk3&distro=SUSE%20Enterprise%20Storage%204pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCLpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-LTSSpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP4pkg:rpm/suse/webkit2gtk3&distro=SUSE%20OpenStack%20Cloud%207
< 2.22.4-2.29.3+ 16 more
- (no CPE)range: < 2.22.4-2.29.3
- (no CPE)range: < 2.22.4-2.29.3
- (no CPE)range: < 2.22.4-2.29.3
- (no CPE)range: < 2.20.5-3.8.1
- (no CPE)range: < 2.20.5-3.8.1
- (no CPE)range: < 2.22.4-2.29.3
- (no CPE)range: < 2.22.4-2.29.3
- (no CPE)range: < 2.22.4-2.29.3
- (no CPE)range: < 2.22.4-2.29.3
- (no CPE)range: < 2.22.4-2.29.3
- (no CPE)range: < 2.22.4-2.29.3
- (no CPE)range: < 2.22.4-2.29.3
- (no CPE)range: < 2.22.4-2.29.3
- (no CPE)range: < 2.22.4-2.29.3
- (no CPE)range: < 2.22.4-2.29.3
- (no CPE)range: < 2.22.4-2.29.3
- (no CPE)range: < 2.22.4-2.29.3
Patches
Vulnerability mechanics
References
9- www.securitytracker.com/id/1041232nvdThird Party AdvisoryVDB Entry
- exchange.xforce.ibmcloud.com/vulnerabilities/146479nvdThird Party Advisory
- security.gentoo.org/glsa/201808-04nvdThird Party Advisory
- support.apple.com/HT208932nvdVendor Advisory
- usn.ubuntu.com/3743-1/nvdThird Party Advisory
- support.apple.com/HT208933%2Cnvd
- support.apple.com/HT208934%2Cnvd
- support.apple.com/HT208936%2Cnvd
- support.apple.com/HT208938%2Cnvd
News mentions
0No linked articles in our index yet.