Vulnerability Description
A memory consumption issue was addressed with improved memory handling. This issue is fixed in iCloud for Windows 7.7, watchOS 5, Safari 12, iOS 12, iTunes 12.9 for Windows, tvOS 12. Unexpected interaction causes an ASSERT failure.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Icloud | < 7.7 |
| Apple | Itunes | < 12.9 |
| Apple | Safari | < 12 |
| Apple | Iphone Os | < 12.0 |
| Apple | Tvos | < 12 |
| Apple | Watchos | < 5.0 |
Related Weaknesses (CWE)
References
- https://support.apple.com/en-us/HT209106Vendor Advisory
- https://support.apple.com/en-us/HT209107Vendor Advisory
- https://support.apple.com/en-us/HT209108Vendor Advisory
- https://support.apple.com/en-us/HT209109Vendor Advisory
- https://support.apple.com/en-us/HT209140Vendor Advisory
- https://support.apple.com/en-us/HT209141Vendor Advisory
- https://support.apple.com/en-us/HT209106Vendor Advisory
- https://support.apple.com/en-us/HT209107Vendor Advisory
- https://support.apple.com/en-us/HT209108Vendor Advisory
- https://support.apple.com/en-us/HT209109Vendor Advisory
- https://support.apple.com/en-us/HT209140Vendor Advisory
- https://support.apple.com/en-us/HT209141Vendor Advisory
FAQ
What is CVE-2018-4474?
CVE-2018-4474 is a vulnerability with a CVSS score of 7.5 (HIGH). A memory consumption issue was addressed with improved memory handling. This issue is fixed in iCloud for Windows 7.7, watchOS 5, Safari 12, iOS 12, iTunes 12.9 for Windows, tvOS 12. Unexpected intera...
How severe is CVE-2018-4474?
CVE-2018-4474 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-4474?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Icloud, Apple Itunes, Apple Safari, Apple Iphone Os, Apple Tvos.