diff --git a/2018/4xxx/CVE-2018-4270.json b/2018/4xxx/CVE-2018-4270.json index 8eed868698a..34a8b64894a 100644 --- a/2018/4xxx/CVE-2018-4270.json +++ b/2018/4xxx/CVE-2018-4270.json @@ -1,17 +1,86 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4270", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4270", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing maliciously crafted web content may lead to an unexpected Safari crash" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208933", + "url": "https://support.apple.com/kb/HT208933" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208938", + "url": "https://support.apple.com/kb/HT208938" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208935", + "url": "https://support.apple.com/kb/HT208935" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208936", + "url": "https://support.apple.com/kb/HT208936" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208934", + "url": "https://support.apple.com/kb/HT208934" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208932", + "url": "https://support.apple.com/kb/HT208932" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6." } ] } diff --git a/2018/4xxx/CVE-2018-4271.json b/2018/4xxx/CVE-2018-4271.json index c67c65b920e..9e18840b2b4 100644 --- a/2018/4xxx/CVE-2018-4271.json +++ b/2018/4xxx/CVE-2018-4271.json @@ -1,17 +1,86 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4271", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4271", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing maliciously crafted web content may lead to an unexpected Safari crash" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208933", + "url": "https://support.apple.com/kb/HT208933" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208938", + "url": "https://support.apple.com/kb/HT208938" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208935", + "url": "https://support.apple.com/kb/HT208935" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208936", + "url": "https://support.apple.com/kb/HT208936" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208934", + "url": "https://support.apple.com/kb/HT208934" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208932", + "url": "https://support.apple.com/kb/HT208932" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Multiple memory corruption issues were addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6." } ] } diff --git a/2018/4xxx/CVE-2018-4272.json b/2018/4xxx/CVE-2018-4272.json index 3ecdb62fcba..be122471b09 100644 --- a/2018/4xxx/CVE-2018-4272.json +++ b/2018/4xxx/CVE-2018-4272.json @@ -1,17 +1,86 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4272", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4272", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing maliciously crafted web content may lead to arbitrary code execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208933", + "url": "https://support.apple.com/kb/HT208933" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208938", + "url": "https://support.apple.com/kb/HT208938" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208935", + "url": "https://support.apple.com/kb/HT208935" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208936", + "url": "https://support.apple.com/kb/HT208936" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208934", + "url": "https://support.apple.com/kb/HT208934" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208932", + "url": "https://support.apple.com/kb/HT208932" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6." } ] } diff --git a/2018/4xxx/CVE-2018-4273.json b/2018/4xxx/CVE-2018-4273.json index f266a51735d..20fa13b4b17 100644 --- a/2018/4xxx/CVE-2018-4273.json +++ b/2018/4xxx/CVE-2018-4273.json @@ -1,17 +1,86 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4273", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4273", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing maliciously crafted web content may lead to an unexpected Safari crash" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208933", + "url": "https://support.apple.com/kb/HT208933" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208938", + "url": "https://support.apple.com/kb/HT208938" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208935", + "url": "https://support.apple.com/kb/HT208935" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208936", + "url": "https://support.apple.com/kb/HT208936" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208934", + "url": "https://support.apple.com/kb/HT208934" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208932", + "url": "https://support.apple.com/kb/HT208932" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Multiple memory corruption issues were addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6." } ] } diff --git a/2018/4xxx/CVE-2018-4274.json b/2018/4xxx/CVE-2018-4274.json index 91530e7f772..0bf7b28bf4d 100644 --- a/2018/4xxx/CVE-2018-4274.json +++ b/2018/4xxx/CVE-2018-4274.json @@ -1,17 +1,66 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4274", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4274", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, Safari", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 11.4.1, Safari 11.1.2" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Visiting a malicious website may lead to address bar spoofing" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208938", + "url": "https://support.apple.com/kb/HT208938" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208934", + "url": "https://support.apple.com/kb/HT208934" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A spoofing issue existed in the handling of URLs. This issue was addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, Safari 11.1.2." } ] } diff --git a/2018/4xxx/CVE-2018-4275.json b/2018/4xxx/CVE-2018-4275.json index 1795c724bb3..e3d948b6ee4 100644 --- a/2018/4xxx/CVE-2018-4275.json +++ b/2018/4xxx/CVE-2018-4275.json @@ -1,17 +1,61 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4275", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4275", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 11.4.1" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A malicious application may be able to break out of its sandbox" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208938", + "url": "https://support.apple.com/kb/HT208938" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1." } ] } diff --git a/2018/4xxx/CVE-2018-4276.json b/2018/4xxx/CVE-2018-4276.json index 708b57841a2..15a5336ac23 100644 --- a/2018/4xxx/CVE-2018-4276.json +++ b/2018/4xxx/CVE-2018-4276.json @@ -1,17 +1,61 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4276", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4276", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "macOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: macOS High Sierra 10.13.6" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "An attacker in a privileged position may be able to perform a denial of service attack" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208937", + "url": "https://support.apple.com/kb/HT208937" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A null pointer dereference was addressed with improved validation. This issue affected versions prior to macOS High Sierra 10.13.6." } ] } diff --git a/2018/4xxx/CVE-2018-4279.json b/2018/4xxx/CVE-2018-4279.json index d77b68ff697..9708a2333f0 100644 --- a/2018/4xxx/CVE-2018-4279.json +++ b/2018/4xxx/CVE-2018-4279.json @@ -1,17 +1,61 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4279", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4279", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "Safari", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: Safari 11.1.2" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Visiting a malicious website may lead to address bar spoofing" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208934", + "url": "https://support.apple.com/kb/HT208934" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "An inconsistent user interface issue was addressed with improved state management. This issue affected versions prior to Safari 11.1.2." } ] } diff --git a/2018/4xxx/CVE-2018-4280.json b/2018/4xxx/CVE-2018-4280.json index aa5cf6142e9..11c06b0b98b 100644 --- a/2018/4xxx/CVE-2018-4280.json +++ b/2018/4xxx/CVE-2018-4280.json @@ -1,17 +1,76 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4280", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4280", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, macOS, tvOS, watchOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "An application may be able to gain elevated privileges" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208937", + "url": "https://support.apple.com/kb/HT208937" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208938", + "url": "https://support.apple.com/kb/HT208938" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208935", + "url": "https://support.apple.com/kb/HT208935" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208936", + "url": "https://support.apple.com/kb/HT208936" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2." } ] } diff --git a/2018/4xxx/CVE-2018-4282.json b/2018/4xxx/CVE-2018-4282.json index 32822f317ef..321a924218c 100644 --- a/2018/4xxx/CVE-2018-4282.json +++ b/2018/4xxx/CVE-2018-4282.json @@ -1,17 +1,71 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4282", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4282", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, watchOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A local user may be able to read kernel memory" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208938", + "url": "https://support.apple.com/kb/HT208938" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208935", + "url": "https://support.apple.com/kb/HT208935" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208936", + "url": "https://support.apple.com/kb/HT208936" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2." } ] } diff --git a/2018/4xxx/CVE-2018-4283.json b/2018/4xxx/CVE-2018-4283.json index a62a83bc5ae..9aa173dd767 100644 --- a/2018/4xxx/CVE-2018-4283.json +++ b/2018/4xxx/CVE-2018-4283.json @@ -1,17 +1,61 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4283", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4283", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "macOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: macOS High Sierra 10.13.6" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A local user may be able to read kernel memory" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208937", + "url": "https://support.apple.com/kb/HT208937" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue affected versions prior to macOS High Sierra 10.13.6." } ] } diff --git a/2018/4xxx/CVE-2018-4284.json b/2018/4xxx/CVE-2018-4284.json index e9a71b0465b..b39064485ac 100644 --- a/2018/4xxx/CVE-2018-4284.json +++ b/2018/4xxx/CVE-2018-4284.json @@ -1,17 +1,86 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4284", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4284", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing maliciously crafted web content may lead to arbitrary code execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208933", + "url": "https://support.apple.com/kb/HT208933" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208938", + "url": "https://support.apple.com/kb/HT208938" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208935", + "url": "https://support.apple.com/kb/HT208935" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208936", + "url": "https://support.apple.com/kb/HT208936" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208934", + "url": "https://support.apple.com/kb/HT208934" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208932", + "url": "https://support.apple.com/kb/HT208932" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A type confusion issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6." } ] } diff --git a/2018/4xxx/CVE-2018-4285.json b/2018/4xxx/CVE-2018-4285.json index 89620cad718..c17ee47bc96 100644 --- a/2018/4xxx/CVE-2018-4285.json +++ b/2018/4xxx/CVE-2018-4285.json @@ -1,17 +1,61 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4285", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4285", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "macOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: macOS High Sierra 10.13.6" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A malicious application may be able to gain root privileges" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208937", + "url": "https://support.apple.com/kb/HT208937" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A type confusion issue was addressed with improved memory handling. This issue affected versions prior to macOS High Sierra 10.13.6." } ] } diff --git a/2018/4xxx/CVE-2018-4286.json b/2018/4xxx/CVE-2018-4286.json index 2daaa3d55ca..22bcd73dc89 100644 --- a/2018/4xxx/CVE-2018-4286.json +++ b/2018/4xxx/CVE-2018-4286.json @@ -1,17 +1,66 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4286", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4286", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "macOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: macOS High Sierra 10.13.6" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Mounting a maliciously crafted NFS network share may lead to arbitrary code execution with system privileges" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209193", + "url": "https://support.apple.com/kb/HT209193" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208937", + "url": "https://support.apple.com/kb/HT208937" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to macOS High Sierra 10.13.6." } ] } diff --git a/2018/4xxx/CVE-2018-4287.json b/2018/4xxx/CVE-2018-4287.json index ec8c30895d8..247b3c972c8 100644 --- a/2018/4xxx/CVE-2018-4287.json +++ b/2018/4xxx/CVE-2018-4287.json @@ -1,17 +1,66 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4287", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4287", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "macOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: macOS High Sierra 10.13.6" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Mounting a maliciously crafted NFS network share may lead to arbitrary code execution with system privileges" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209193", + "url": "https://support.apple.com/kb/HT209193" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208937", + "url": "https://support.apple.com/kb/HT208937" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to macOS High Sierra 10.13.6." } ] } diff --git a/2018/4xxx/CVE-2018-4288.json b/2018/4xxx/CVE-2018-4288.json index ca9135f27a9..2a8cbb4ee5a 100644 --- a/2018/4xxx/CVE-2018-4288.json +++ b/2018/4xxx/CVE-2018-4288.json @@ -1,17 +1,66 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4288", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4288", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "macOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: macOS High Sierra 10.13.6" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Mounting a maliciously crafted NFS network share may lead to arbitrary code execution with system privileges" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209193", + "url": "https://support.apple.com/kb/HT209193" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208937", + "url": "https://support.apple.com/kb/HT208937" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to macOS High Sierra 10.13.6." } ] } diff --git a/2018/4xxx/CVE-2018-4289.json b/2018/4xxx/CVE-2018-4289.json index 76e8698e242..76c8206ff69 100644 --- a/2018/4xxx/CVE-2018-4289.json +++ b/2018/4xxx/CVE-2018-4289.json @@ -1,17 +1,61 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4289", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4289", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "macOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: macOS High Sierra 10.13.6" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A malicious application may be able to determine kernel memory layout" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208937", + "url": "https://support.apple.com/kb/HT208937" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "An information disclosure issue was addressed by removing the vulnerable code. This issue affected versions prior to macOS High Sierra 10.13.6." } ] } diff --git a/2018/4xxx/CVE-2018-4290.json b/2018/4xxx/CVE-2018-4290.json index d9570fab9c4..481d3402f67 100644 --- a/2018/4xxx/CVE-2018-4290.json +++ b/2018/4xxx/CVE-2018-4290.json @@ -1,17 +1,66 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4290", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4290", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, watchOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 11.4.1, watchOS 4.3.2" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing an emoji under certain configurations may lead to a denial of service" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208938", + "url": "https://support.apple.com/kb/HT208938" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208935", + "url": "https://support.apple.com/kb/HT208935" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A denial of service issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, watchOS 4.3.2." } ] } diff --git a/2018/4xxx/CVE-2018-4291.json b/2018/4xxx/CVE-2018-4291.json index 78370fe33cb..99521a81824 100644 --- a/2018/4xxx/CVE-2018-4291.json +++ b/2018/4xxx/CVE-2018-4291.json @@ -1,17 +1,66 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4291", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4291", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "macOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: macOS High Sierra 10.13.6" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Mounting a maliciously crafted NFS network share may lead to arbitrary code execution with system privileges" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209193", + "url": "https://support.apple.com/kb/HT209193" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208937", + "url": "https://support.apple.com/kb/HT208937" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to macOS High Sierra 10.13.6." } ] } diff --git a/2018/4xxx/CVE-2018-4293.json b/2018/4xxx/CVE-2018-4293.json index 265863bfef0..c31e9bbd0c0 100644 --- a/2018/4xxx/CVE-2018-4293.json +++ b/2018/4xxx/CVE-2018-4293.json @@ -1,17 +1,86 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4293", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4293", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, macOS, tvOS, watchOS, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2, iTunes 12.8 for Windows, iCloud for Windows 7.6" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Cookies may unexpectedly persist in Safari" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208933", + "url": "https://support.apple.com/kb/HT208933" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208937", + "url": "https://support.apple.com/kb/HT208937" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208938", + "url": "https://support.apple.com/kb/HT208938" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208935", + "url": "https://support.apple.com/kb/HT208935" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208936", + "url": "https://support.apple.com/kb/HT208936" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208932", + "url": "https://support.apple.com/kb/HT208932" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A cookie management issue was addressed with improved checks. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2, iTunes 12.8 for Windows, iCloud for Windows 7.6." } ] } diff --git a/2018/4xxx/CVE-2018-4295.json b/2018/4xxx/CVE-2018-4295.json index b785f5f78bf..517bfecbeb5 100644 --- a/2018/4xxx/CVE-2018-4295.json +++ b/2018/4xxx/CVE-2018-4295.json @@ -1,17 +1,66 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4295", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4295", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "macOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: macOS Mojave 10.14" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A remote attacker may be able to attack AFP servers through HTTP clients" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209193", + "url": "https://support.apple.com/kb/HT209193" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "An input validation issue was addressed with improved input validation. This issue affected versions prior to macOS Mojave 10.14." } ] } diff --git a/2018/4xxx/CVE-2018-4299.json b/2018/4xxx/CVE-2018-4299.json index 1e9a8c1dfde..996899c3562 100644 --- a/2018/4xxx/CVE-2018-4299.json +++ b/2018/4xxx/CVE-2018-4299.json @@ -1,17 +1,86 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4299", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4299", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing maliciously crafted web content may lead to arbitrary code execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209141", + "url": "https://support.apple.com/kb/HT209141" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209140", + "url": "https://support.apple.com/kb/HT209140" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209108", + "url": "https://support.apple.com/kb/HT209108" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209109", + "url": "https://support.apple.com/kb/HT209109" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7." } ] } diff --git a/2018/4xxx/CVE-2018-4303.json b/2018/4xxx/CVE-2018-4303.json index 4c13c2fc868..1ba89c9bedd 100644 --- a/2018/4xxx/CVE-2018-4303.json +++ b/2018/4xxx/CVE-2018-4303.json @@ -1,17 +1,76 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4303", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4303", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "macOS, iOS, tvOS, watchOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: macOS Mojave 10.14, iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A malicious application may be able to elevate privileges" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209343", + "url": "https://support.apple.com/kb/HT209343" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209342", + "url": "https://support.apple.com/kb/HT209342" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209340", + "url": "https://support.apple.com/kb/HT209340" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209341", + "url": "https://support.apple.com/kb/HT209341" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "An input validation issue was addressed with improved input validation. This issue affected versions prior to macOS Mojave 10.14, iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2." } ] } diff --git a/2018/4xxx/CVE-2018-4304.json b/2018/4xxx/CVE-2018-4304.json index a23a3c0863b..88748c660c4 100644 --- a/2018/4xxx/CVE-2018-4304.json +++ b/2018/4xxx/CVE-2018-4304.json @@ -1,17 +1,81 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4304", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4304", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, macOS, tvOS, watchOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing a maliciously crafted text file may lead to a denial of service" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209193", + "url": "https://support.apple.com/kb/HT209193" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209108", + "url": "https://support.apple.com/kb/HT209108" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A denial of service issue was addressed with improved validation. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5." } ] } diff --git a/2018/4xxx/CVE-2018-4305.json b/2018/4xxx/CVE-2018-4305.json index f7a494554c6..8e0bd696b06 100644 --- a/2018/4xxx/CVE-2018-4305.json +++ b/2018/4xxx/CVE-2018-4305.json @@ -1,17 +1,71 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4305", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4305", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, watchOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, tvOS 12, watchOS 5" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "An attacker in a privileged network position may be able to spoof password prompts in the iTunes Store" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209108", + "url": "https://support.apple.com/kb/HT209108" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "An input validation issue was addressed with improved input validation. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5." } ] } diff --git a/2018/4xxx/CVE-2018-4306.json b/2018/4xxx/CVE-2018-4306.json index d3c87cd6f1d..596d9caab3f 100644 --- a/2018/4xxx/CVE-2018-4306.json +++ b/2018/4xxx/CVE-2018-4306.json @@ -1,17 +1,81 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4306", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4306", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing maliciously crafted web content may lead to arbitrary code execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209141", + "url": "https://support.apple.com/kb/HT209141" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209140", + "url": "https://support.apple.com/kb/HT209140" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209109", + "url": "https://support.apple.com/kb/HT209109" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7." } ] } diff --git a/2018/4xxx/CVE-2018-4307.json b/2018/4xxx/CVE-2018-4307.json index 865d1b82abe..ed0971377e6 100644 --- a/2018/4xxx/CVE-2018-4307.json +++ b/2018/4xxx/CVE-2018-4307.json @@ -1,17 +1,66 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4307", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4307", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, Safari", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, Safari 12" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A malicious website may be able to exfiltrate autofilled data in Safari" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209109", + "url": "https://support.apple.com/kb/HT209109" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A logic issue was addressed with improved state management. This issue affected versions prior to iOS 12, Safari 12." } ] } diff --git a/2018/4xxx/CVE-2018-4308.json b/2018/4xxx/CVE-2018-4308.json index ae65debfa77..64800485e32 100644 --- a/2018/4xxx/CVE-2018-4308.json +++ b/2018/4xxx/CVE-2018-4308.json @@ -1,17 +1,66 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4308", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4308", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "macOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: macOS Mojave 10.14" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "An application may be able to read restricted memory" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209193", + "url": "https://support.apple.com/kb/HT209193" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "An out-of-bounds read was addressed with improved bounds checking. This issue affected versions prior to macOS Mojave 10.14." } ] } diff --git a/2018/4xxx/CVE-2018-4309.json b/2018/4xxx/CVE-2018-4309.json index 7f78e1bdaf8..c2d5f1b1ec5 100644 --- a/2018/4xxx/CVE-2018-4309.json +++ b/2018/4xxx/CVE-2018-4309.json @@ -1,17 +1,81 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4309", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4309", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A malicious website may be able to execute scripts in the context of another website" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209141", + "url": "https://support.apple.com/kb/HT209141" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209140", + "url": "https://support.apple.com/kb/HT209140" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209109", + "url": "https://support.apple.com/kb/HT209109" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7." } ] } diff --git a/2018/4xxx/CVE-2018-4310.json b/2018/4xxx/CVE-2018-4310.json index 29e9286922e..f1e6ba2448f 100644 --- a/2018/4xxx/CVE-2018-4310.json +++ b/2018/4xxx/CVE-2018-4310.json @@ -1,17 +1,71 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4310", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4310", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, macOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, macOS Mojave 10.14" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A sandboxed process may be able to circumvent sandbox restrictions" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209193", + "url": "https://support.apple.com/kb/HT209193" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "An access issue was addressed with additional sandbox restrictions. This issue affected versions prior to iOS 12, macOS Mojave 10.14." } ] } diff --git a/2018/4xxx/CVE-2018-4311.json b/2018/4xxx/CVE-2018-4311.json index b5da9f6c3a0..0c74bfab33c 100644 --- a/2018/4xxx/CVE-2018-4311.json +++ b/2018/4xxx/CVE-2018-4311.json @@ -1,17 +1,81 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4311", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4311", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, watchOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Cross-origin SecurityErrors includes the accessed frame\u2019s origin" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209141", + "url": "https://support.apple.com/kb/HT209141" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209140", + "url": "https://support.apple.com/kb/HT209140" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209108", + "url": "https://support.apple.com/kb/HT209108" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209109", + "url": "https://support.apple.com/kb/HT209109" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "The issue was addressed by removing origin information. This issue affected versions prior to iOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7." } ] } diff --git a/2018/4xxx/CVE-2018-4312.json b/2018/4xxx/CVE-2018-4312.json index 8a883734fa5..6fd4e64f1e6 100644 --- a/2018/4xxx/CVE-2018-4312.json +++ b/2018/4xxx/CVE-2018-4312.json @@ -1,17 +1,76 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4312", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4312", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing maliciously crafted web content may lead to arbitrary code execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209141", + "url": "https://support.apple.com/kb/HT209141" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209140", + "url": "https://support.apple.com/kb/HT209140" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209109", + "url": "https://support.apple.com/kb/HT209109" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209107https://support.apple.com/kb/HT209106" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7." } ] } diff --git a/2018/4xxx/CVE-2018-4313.json b/2018/4xxx/CVE-2018-4313.json index 37778ead4bc..44381e4140f 100644 --- a/2018/4xxx/CVE-2018-4313.json +++ b/2018/4xxx/CVE-2018-4313.json @@ -1,17 +1,71 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4313", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4313", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, watchOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, tvOS 12, watchOS 5" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A local user may be able to discover a user\u2019s deleted messages" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209108", + "url": "https://support.apple.com/kb/HT209108" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A consistency issue existed in the handling of application snapshots. The issue was addressed with improved handling of message deletions. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5." } ] } diff --git a/2018/4xxx/CVE-2018-4314.json b/2018/4xxx/CVE-2018-4314.json index be329779c9e..5eb0563473e 100644 --- a/2018/4xxx/CVE-2018-4314.json +++ b/2018/4xxx/CVE-2018-4314.json @@ -1,17 +1,81 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4314", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4314", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing maliciously crafted web content may lead to arbitrary code execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209141", + "url": "https://support.apple.com/kb/HT209141" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209140", + "url": "https://support.apple.com/kb/HT209140" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209109", + "url": "https://support.apple.com/kb/HT209109" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7." } ] } diff --git a/2018/4xxx/CVE-2018-4315.json b/2018/4xxx/CVE-2018-4315.json index ebe9360c66f..96aa8eb708a 100644 --- a/2018/4xxx/CVE-2018-4315.json +++ b/2018/4xxx/CVE-2018-4315.json @@ -1,17 +1,81 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4315", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4315", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing maliciously crafted web content may lead to arbitrary code execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209141", + "url": "https://support.apple.com/kb/HT209141" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209140", + "url": "https://support.apple.com/kb/HT209140" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209109", + "url": "https://support.apple.com/kb/HT209109" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7." } ] } diff --git a/2018/4xxx/CVE-2018-4316.json b/2018/4xxx/CVE-2018-4316.json index 6cb34539126..af652325eb9 100644 --- a/2018/4xxx/CVE-2018-4316.json +++ b/2018/4xxx/CVE-2018-4316.json @@ -1,17 +1,81 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4316", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4316", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing maliciously crafted web content may lead to arbitrary code execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209141", + "url": "https://support.apple.com/kb/HT209141" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209140", + "url": "https://support.apple.com/kb/HT209140" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209109", + "url": "https://support.apple.com/kb/HT209109" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A memory corruption issue was addressed with improved state management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7." } ] } diff --git a/2018/4xxx/CVE-2018-4317.json b/2018/4xxx/CVE-2018-4317.json index 9543ba06fbf..ed297dd5af1 100644 --- a/2018/4xxx/CVE-2018-4317.json +++ b/2018/4xxx/CVE-2018-4317.json @@ -1,17 +1,81 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4317", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4317", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing maliciously crafted web content may lead to arbitrary code execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209141", + "url": "https://support.apple.com/kb/HT209141" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209140", + "url": "https://support.apple.com/kb/HT209140" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209109", + "url": "https://support.apple.com/kb/HT209109" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7." } ] } diff --git a/2018/4xxx/CVE-2018-4318.json b/2018/4xxx/CVE-2018-4318.json index b522db6bc48..6d2f2ce74c7 100644 --- a/2018/4xxx/CVE-2018-4318.json +++ b/2018/4xxx/CVE-2018-4318.json @@ -1,17 +1,81 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4318", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4318", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing maliciously crafted web content may lead to arbitrary code execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209141", + "url": "https://support.apple.com/kb/HT209141" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209140", + "url": "https://support.apple.com/kb/HT209140" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209109", + "url": "https://support.apple.com/kb/HT209109" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7." } ] } diff --git a/2018/4xxx/CVE-2018-4319.json b/2018/4xxx/CVE-2018-4319.json index 3c7211d6058..9eeecafd458 100644 --- a/2018/4xxx/CVE-2018-4319.json +++ b/2018/4xxx/CVE-2018-4319.json @@ -1,17 +1,81 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4319", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4319", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, watchOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A malicious website may cause unexepected cross-origin behavior" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209141", + "url": "https://support.apple.com/kb/HT209141" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209140", + "url": "https://support.apple.com/kb/HT209140" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209108", + "url": "https://support.apple.com/kb/HT209108" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209109", + "url": "https://support.apple.com/kb/HT209109" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A cross-origin issue existed with \"iframe\" elements. This was addressed with improved tracking of security origins. This issue affected versions prior to iOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7." } ] } diff --git a/2018/4xxx/CVE-2018-4321.json b/2018/4xxx/CVE-2018-4321.json index 295268a8b3f..575d183a71e 100644 --- a/2018/4xxx/CVE-2018-4321.json +++ b/2018/4xxx/CVE-2018-4321.json @@ -1,17 +1,71 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4321", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4321", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, macOS, tvOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, macOS Mojave 10.14, tvOS 12" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A malicious application may be able to access local users AppleIDs" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A validation issue existed in the entitlement verification. This issue was addressed with improved validation of the process entitlement. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12." } ] } diff --git a/2018/4xxx/CVE-2018-4322.json b/2018/4xxx/CVE-2018-4322.json index c92204c827c..20b113bff42 100644 --- a/2018/4xxx/CVE-2018-4322.json +++ b/2018/4xxx/CVE-2018-4322.json @@ -1,17 +1,61 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4322", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4322", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A local app may be able to read a persistent account identifier" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "This issue was addressed with improved entitlements. This issue affected versions prior to iOS 12." } ] } diff --git a/2018/4xxx/CVE-2018-4323.json b/2018/4xxx/CVE-2018-4323.json index 133fe20789e..a5431886490 100644 --- a/2018/4xxx/CVE-2018-4323.json +++ b/2018/4xxx/CVE-2018-4323.json @@ -1,17 +1,81 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4323", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4323", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing maliciously crafted web content may lead to arbitrary code execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209141", + "url": "https://support.apple.com/kb/HT209141" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209140", + "url": "https://support.apple.com/kb/HT209140" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209109", + "url": "https://support.apple.com/kb/HT209109" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7." } ] } diff --git a/2018/4xxx/CVE-2018-4324.json b/2018/4xxx/CVE-2018-4324.json index 2ebfef1573a..541a7b3392e 100644 --- a/2018/4xxx/CVE-2018-4324.json +++ b/2018/4xxx/CVE-2018-4324.json @@ -1,17 +1,61 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4324", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4324", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "macOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: macOS Mojave 10.14" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A malicious application may be able to determine the Apple ID of the owner of the computer" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A permissions issue existed in the handling of the Apple ID. This issue was addressed with improved access controls. This issue affected versions prior to macOS Mojave 10.14." } ] } diff --git a/2018/4xxx/CVE-2018-4325.json b/2018/4xxx/CVE-2018-4325.json index 27addb9044e..a0975af99a0 100644 --- a/2018/4xxx/CVE-2018-4325.json +++ b/2018/4xxx/CVE-2018-4325.json @@ -1,17 +1,61 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4325", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4325", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A person with physical access to an iOSdevice may be able to determine the last used app from the lock screen" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A logic issue was addressed with improved restrictions. This issue affected versions prior to iOS 12." } ] } diff --git a/2018/4xxx/CVE-2018-4326.json b/2018/4xxx/CVE-2018-4326.json index 43674e90d3a..04fe35d10b2 100644 --- a/2018/4xxx/CVE-2018-4326.json +++ b/2018/4xxx/CVE-2018-4326.json @@ -1,17 +1,71 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4326", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4326", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, macOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, macOS Mojave 10.14" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "An application may be able to execute arbitrary code with kernel privileges" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209193", + "url": "https://support.apple.com/kb/HT209193" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14." } ] } diff --git a/2018/4xxx/CVE-2018-4327.json b/2018/4xxx/CVE-2018-4327.json index 46b7db716e4..a35ee38b6a0 100644 --- a/2018/4xxx/CVE-2018-4327.json +++ b/2018/4xxx/CVE-2018-4327.json @@ -1,17 +1,61 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4327", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4327", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 11.4.1" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "An application may be able to execute arbitrary code with system privileges" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208938", + "url": "https://support.apple.com/kb/HT208938" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1." } ] } diff --git a/2018/4xxx/CVE-2018-4328.json b/2018/4xxx/CVE-2018-4328.json index d7b89c8c5b2..7e9006267db 100644 --- a/2018/4xxx/CVE-2018-4328.json +++ b/2018/4xxx/CVE-2018-4328.json @@ -1,17 +1,81 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4328", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4328", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing maliciously crafted web content may lead to arbitrary code execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209141", + "url": "https://support.apple.com/kb/HT209141" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209140", + "url": "https://support.apple.com/kb/HT209140" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209109", + "url": "https://support.apple.com/kb/HT209109" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7." } ] } diff --git a/2018/4xxx/CVE-2018-4329.json b/2018/4xxx/CVE-2018-4329.json index 0a7fef1293a..89918621f40 100644 --- a/2018/4xxx/CVE-2018-4329.json +++ b/2018/4xxx/CVE-2018-4329.json @@ -1,17 +1,66 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4329", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4329", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, Safari", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, Safari 12" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A user may be unable to delete browsing history items" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209109", + "url": "https://support.apple.com/kb/HT209109" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Clearing a history item may not clear visits with redirect chains. The issue was addressed with improved data deletion. This issue affected versions prior to iOS 12, Safari 12." } ] } diff --git a/2018/4xxx/CVE-2018-4331.json b/2018/4xxx/CVE-2018-4331.json index 7014850dd78..4138e8a0b8c 100644 --- a/2018/4xxx/CVE-2018-4331.json +++ b/2018/4xxx/CVE-2018-4331.json @@ -1,17 +1,81 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4331", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4331", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, macOS, tvOS, watchOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "An application may be able to execute arbitrary code with system privileges" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209193", + "url": "https://support.apple.com/kb/HT209193" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209108", + "url": "https://support.apple.com/kb/HT209108" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5." } ] } diff --git a/2018/4xxx/CVE-2018-4332.json b/2018/4xxx/CVE-2018-4332.json index 56ad8a94b13..6589285640e 100644 --- a/2018/4xxx/CVE-2018-4332.json +++ b/2018/4xxx/CVE-2018-4332.json @@ -1,17 +1,76 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4332", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4332", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, macOS, tvOS, watchOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "An application may be able to execute arbitrary code with system privileges" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209108", + "url": "https://support.apple.com/kb/HT209108" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5." } ] } diff --git a/2018/4xxx/CVE-2018-4333.json b/2018/4xxx/CVE-2018-4333.json index fee0df31096..9a10bf5c769 100644 --- a/2018/4xxx/CVE-2018-4333.json +++ b/2018/4xxx/CVE-2018-4333.json @@ -1,17 +1,66 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4333", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4333", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, macOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, macOS Mojave 10.14" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "An application may be able to read restricted memory" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A validation issue was addressed with improved input sanitization. This issue affected versions prior to iOS 12, macOS Mojave 10.14." } ] } diff --git a/2018/4xxx/CVE-2018-4334.json b/2018/4xxx/CVE-2018-4334.json index 635b867dfba..17ef1be0e3e 100644 --- a/2018/4xxx/CVE-2018-4334.json +++ b/2018/4xxx/CVE-2018-4334.json @@ -1,17 +1,66 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4334", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4334", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "macOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: macOS Mojave 10.14" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "An application may be able to execute arbitrary code with system privileges" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209193", + "url": "https://support.apple.com/kb/HT209193" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to macOS Mojave 10.14." } ] } diff --git a/2018/4xxx/CVE-2018-4335.json b/2018/4xxx/CVE-2018-4335.json index ba095089f98..53bf605de5c 100644 --- a/2018/4xxx/CVE-2018-4335.json +++ b/2018/4xxx/CVE-2018-4335.json @@ -1,17 +1,61 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4335", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4335", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "An application may be able to read restricted memory" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A validation issue was addressed with improved input sanitization. This issue affected versions prior to iOS 12." } ] } diff --git a/2018/4xxx/CVE-2018-4336.json b/2018/4xxx/CVE-2018-4336.json index 05a07d11ec2..5e425237f4e 100644 --- a/2018/4xxx/CVE-2018-4336.json +++ b/2018/4xxx/CVE-2018-4336.json @@ -1,17 +1,76 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4336", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4336", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, macOS, tvOS, watchOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "An application may be able to execute arbitrary code with kernel privileges" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209108", + "url": "https://support.apple.com/kb/HT209108" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5." } ] } diff --git a/2018/4xxx/CVE-2018-4337.json b/2018/4xxx/CVE-2018-4337.json index 46d13eb2ad1..64c3b0b0bc4 100644 --- a/2018/4xxx/CVE-2018-4337.json +++ b/2018/4xxx/CVE-2018-4337.json @@ -1,17 +1,76 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4337", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4337", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, macOS, tvOS, watchOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "An application may be able to execute arbitrary code with kernel privileges" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209108", + "url": "https://support.apple.com/kb/HT209108" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5." } ] } diff --git a/2018/4xxx/CVE-2018-4338.json b/2018/4xxx/CVE-2018-4338.json index 70a6342b0e7..9dc86c8095e 100644 --- a/2018/4xxx/CVE-2018-4338.json +++ b/2018/4xxx/CVE-2018-4338.json @@ -1,17 +1,61 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4338", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4338", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "macOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: macOS Mojave 10.14" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "An application may be able to read restricted memory" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A validation issue was addressed with improved input sanitization. This issue affected versions prior to macOS Mojave 10.14." } ] } diff --git a/2018/4xxx/CVE-2018-4340.json b/2018/4xxx/CVE-2018-4340.json index 67954bd423b..13bd656a442 100644 --- a/2018/4xxx/CVE-2018-4340.json +++ b/2018/4xxx/CVE-2018-4340.json @@ -1,17 +1,81 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4340", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4340", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, macOS, tvOS, watchOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "An application may be able to execute arbitrary code with kernel privileges" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209193", + "url": "https://support.apple.com/kb/HT209193" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209108", + "url": "https://support.apple.com/kb/HT209108" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5." } ] } diff --git a/2018/4xxx/CVE-2018-4341.json b/2018/4xxx/CVE-2018-4341.json index 634b08940e5..e056ad229c8 100644 --- a/2018/4xxx/CVE-2018-4341.json +++ b/2018/4xxx/CVE-2018-4341.json @@ -1,17 +1,81 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4341", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4341", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, macOS, tvOS, watchOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A malicious application may be able to break out of its sandbox" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209193", + "url": "https://support.apple.com/kb/HT209193" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209108", + "url": "https://support.apple.com/kb/HT209108" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5." } ] } diff --git a/2018/4xxx/CVE-2018-4342.json b/2018/4xxx/CVE-2018-4342.json index 415b46688a2..b08bdfdeb6a 100644 --- a/2018/4xxx/CVE-2018-4342.json +++ b/2018/4xxx/CVE-2018-4342.json @@ -1,17 +1,61 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4342", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4342", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "macOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: macOS Mojave 10.14.1" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A local user may be able to modify protected parts of the file system" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209193", + "url": "https://support.apple.com/kb/HT209193" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A configuration issue was addressed with additional restrictions. This issue affected versions prior to macOS Mojave 10.14.1." } ] } diff --git a/2018/4xxx/CVE-2018-4343.json b/2018/4xxx/CVE-2018-4343.json index 4c0f3286a49..79e77fa0608 100644 --- a/2018/4xxx/CVE-2018-4343.json +++ b/2018/4xxx/CVE-2018-4343.json @@ -1,17 +1,76 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4343", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4343", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, macOS, tvOS, watchOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "An application may be able to execute arbitrary code with system privileges" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209108", + "url": "https://support.apple.com/kb/HT209108" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5." } ] } diff --git a/2018/4xxx/CVE-2018-4344.json b/2018/4xxx/CVE-2018-4344.json index 312babc67c9..f2d644e9b91 100644 --- a/2018/4xxx/CVE-2018-4344.json +++ b/2018/4xxx/CVE-2018-4344.json @@ -1,17 +1,76 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4344", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4344", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, macOS, tvOS, watchOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "An application may be able to execute arbitrary code with kernel privileges" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209108", + "url": "https://support.apple.com/kb/HT209108" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5." } ] } diff --git a/2018/4xxx/CVE-2018-4345.json b/2018/4xxx/CVE-2018-4345.json index 93a4a90c6f2..e652d0411ff 100644 --- a/2018/4xxx/CVE-2018-4345.json +++ b/2018/4xxx/CVE-2018-4345.json @@ -1,17 +1,81 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4345", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4345", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A malicious website may exfiltrate image data cross-origin" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209141", + "url": "https://support.apple.com/kb/HT209141" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209140", + "url": "https://support.apple.com/kb/HT209140" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209109", + "url": "https://support.apple.com/kb/HT209109" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7." } ] } diff --git a/2018/4xxx/CVE-2018-4346.json b/2018/4xxx/CVE-2018-4346.json index 4c636cb72b3..860f6083498 100644 --- a/2018/4xxx/CVE-2018-4346.json +++ b/2018/4xxx/CVE-2018-4346.json @@ -1,17 +1,66 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4346", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4346", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "macOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: macOS Mojave 10.14" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Parsing a maliciously crafted dictionary file may lead to disclosure of user information" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209193", + "url": "https://support.apple.com/kb/HT209193" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A validation issue existed which allowed local file access. This was addressed with input sanitization. This issue affected versions prior to macOS Mojave 10.14." } ] } diff --git a/2018/4xxx/CVE-2018-4347.json b/2018/4xxx/CVE-2018-4347.json index 3e0ad3aa579..d4560c4aaaa 100644 --- a/2018/4xxx/CVE-2018-4347.json +++ b/2018/4xxx/CVE-2018-4347.json @@ -1,17 +1,86 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4347", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4347", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, macOS, tvOS, watchOS, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5, iTunes 12.9 for Windows, iCloud for Windows 7.7" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing a maliciously crafted text file may lead to arbitrary code execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209141", + "url": "https://support.apple.com/kb/HT209141" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209140", + "url": "https://support.apple.com/kb/HT209140" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209108", + "url": "https://support.apple.com/kb/HT209108" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5, iTunes 12.9 for Windows, iCloud for Windows 7.7." } ] } diff --git a/2018/4xxx/CVE-2018-4348.json b/2018/4xxx/CVE-2018-4348.json index 537aae6640e..6b91f6ebcd8 100644 --- a/2018/4xxx/CVE-2018-4348.json +++ b/2018/4xxx/CVE-2018-4348.json @@ -1,17 +1,66 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4348", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4348", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "macOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: macOS Mojave 10.14" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A local user may be able to cause a denial of service" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209193", + "url": "https://support.apple.com/kb/HT209193" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A validation issue was addressed with improved logic. This issue affected versions prior to macOS Mojave 10.14." } ] } diff --git a/2018/4xxx/CVE-2018-4350.json b/2018/4xxx/CVE-2018-4350.json index 5dcf230f659..6502b9b1e60 100644 --- a/2018/4xxx/CVE-2018-4350.json +++ b/2018/4xxx/CVE-2018-4350.json @@ -1,17 +1,66 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4350", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4350", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "macOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: macOS Mojave 10.14" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "An application may be able to execute arbitrary code with system privileges" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209193", + "url": "https://support.apple.com/kb/HT209193" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A memory corruption issue was addressed with improved input validation. This issue affected versions prior to macOS Mojave 10.14." } ] } diff --git a/2018/4xxx/CVE-2018-4351.json b/2018/4xxx/CVE-2018-4351.json index 6a1f1a29765..733921b09b8 100644 --- a/2018/4xxx/CVE-2018-4351.json +++ b/2018/4xxx/CVE-2018-4351.json @@ -1,17 +1,61 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4351", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4351", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "macOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: macOS Mojave 10.14" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "An application may be able to read restricted memory" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A memory initialization issue was addressed with improved memory handling. This issue affected versions prior to macOS Mojave 10.14." } ] } diff --git a/2018/4xxx/CVE-2018-4352.json b/2018/4xxx/CVE-2018-4352.json index 22452cf5e9f..b7da09c0abf 100644 --- a/2018/4xxx/CVE-2018-4352.json +++ b/2018/4xxx/CVE-2018-4352.json @@ -1,17 +1,61 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4352", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4352", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A local user may be able to discover a user\u2019s deleted notes" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A consistency issue existed in the handling of application snapshots. The issue was addressed with improved handling of notes deletions. This issue affected versions prior to iOS 12." } ] } diff --git a/2018/4xxx/CVE-2018-4353.json b/2018/4xxx/CVE-2018-4353.json index 9812eddb8f3..1d3bf83a4e1 100644 --- a/2018/4xxx/CVE-2018-4353.json +++ b/2018/4xxx/CVE-2018-4353.json @@ -1,17 +1,61 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4353", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4353", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "macOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: macOS Mojave 10.14" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A sandboxed process may be able to circumvent sandbox restrictions" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A configuration issue was addressed with additional restrictions. This issue affected versions prior to macOS Mojave 10.14." } ] } diff --git a/2018/4xxx/CVE-2018-4354.json b/2018/4xxx/CVE-2018-4354.json index a35dc3a93ea..38d71661b60 100644 --- a/2018/4xxx/CVE-2018-4354.json +++ b/2018/4xxx/CVE-2018-4354.json @@ -1,17 +1,81 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4354", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4354", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, macOS, tvOS, watchOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A malicious application may be able to break out of its sandbox" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209193", + "url": "https://support.apple.com/kb/HT209193" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209108", + "url": "https://support.apple.com/kb/HT209108" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5." } ] } diff --git a/2018/4xxx/CVE-2018-4355.json b/2018/4xxx/CVE-2018-4355.json index aca1ec1894c..f0d1b1c1481 100644 --- a/2018/4xxx/CVE-2018-4355.json +++ b/2018/4xxx/CVE-2018-4355.json @@ -1,17 +1,66 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4355", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4355", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, macOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, macOS Mojave 10.14" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Parsing a maliciously crafted iBooks file may lead to disclosure of user information" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A configuration issue was addressed with additional restrictions. This issue affected versions prior to iOS 12, macOS Mojave 10.14." } ] } diff --git a/2018/4xxx/CVE-2018-4356.json b/2018/4xxx/CVE-2018-4356.json index 907387918a4..2d9c66551e0 100644 --- a/2018/4xxx/CVE-2018-4356.json +++ b/2018/4xxx/CVE-2018-4356.json @@ -1,17 +1,61 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4356", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4356", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "An app may be able to learn information about the current camera view before being granted camera access" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A permissions issue existed. This issue was addressed with improved permission validation. This issue affected versions prior to iOS 12." } ] } diff --git a/2018/4xxx/CVE-2018-4357.json b/2018/4xxx/CVE-2018-4357.json index 21647115fd0..7f50a12b54b 100644 --- a/2018/4xxx/CVE-2018-4357.json +++ b/2018/4xxx/CVE-2018-4357.json @@ -1,17 +1,61 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4357", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4357", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "Xcode", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: Xcode 10" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "An application may be able to execute arbitrary code with kernel privileges" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209135", + "url": "https://support.apple.com/kb/HT209135" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A memory corruption issue was addressed with improved input validation. This issue affected versions prior to Xcode 10." } ] } diff --git a/2018/4xxx/CVE-2018-4358.json b/2018/4xxx/CVE-2018-4358.json index d8d70dea78d..331e727a880 100644 --- a/2018/4xxx/CVE-2018-4358.json +++ b/2018/4xxx/CVE-2018-4358.json @@ -1,17 +1,86 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4358", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4358", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing maliciously crafted web content may lead to arbitrary code execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209141", + "url": "https://support.apple.com/kb/HT209141" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209140", + "url": "https://support.apple.com/kb/HT209140" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209108", + "url": "https://support.apple.com/kb/HT209108" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209109", + "url": "https://support.apple.com/kb/HT209109" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7." } ] } diff --git a/2018/4xxx/CVE-2018-4359.json b/2018/4xxx/CVE-2018-4359.json index 60befd33336..f1d741bdef8 100644 --- a/2018/4xxx/CVE-2018-4359.json +++ b/2018/4xxx/CVE-2018-4359.json @@ -1,17 +1,86 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4359", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4359", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing maliciously crafted web content may lead to arbitrary code execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209141", + "url": "https://support.apple.com/kb/HT209141" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209140", + "url": "https://support.apple.com/kb/HT209140" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209108", + "url": "https://support.apple.com/kb/HT209108" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209109", + "url": "https://support.apple.com/kb/HT209109" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7." } ] } diff --git a/2018/4xxx/CVE-2018-4360.json b/2018/4xxx/CVE-2018-4360.json index 12289d7c3d9..8dfe8620fba 100644 --- a/2018/4xxx/CVE-2018-4360.json +++ b/2018/4xxx/CVE-2018-4360.json @@ -1,17 +1,81 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4360", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4360", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing maliciously crafted web content may lead to arbitrary code execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209141", + "url": "https://support.apple.com/kb/HT209141" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209140", + "url": "https://support.apple.com/kb/HT209140" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209109", + "url": "https://support.apple.com/kb/HT209109" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7." } ] } diff --git a/2018/4xxx/CVE-2018-4361.json b/2018/4xxx/CVE-2018-4361.json index 0a99ddb150b..fddcda1f726 100644 --- a/2018/4xxx/CVE-2018-4361.json +++ b/2018/4xxx/CVE-2018-4361.json @@ -1,17 +1,86 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4361", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4361", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Unexpected interaction causes an ASSERT failure" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/HT209106", + "url": "https://support.apple.com/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/HT209107", + "url": "https://support.apple.com/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/HT209108", + "url": "https://support.apple.com/HT209108" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/HT209109", + "url": "https://support.apple.com/HT209109" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/HT209140", + "url": "https://support.apple.com/HT209140" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/HT209141", + "url": "https://support.apple.com/HT209141" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A memory consumption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7." } ] } diff --git a/2018/4xxx/CVE-2018-4362.json b/2018/4xxx/CVE-2018-4362.json index fe5ff259998..f2c9f8f077c 100644 --- a/2018/4xxx/CVE-2018-4362.json +++ b/2018/4xxx/CVE-2018-4362.json @@ -1,17 +1,66 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4362", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4362", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "Safari, iOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: Safari 11.1.2, iOS 12" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Visiting a malicious website may lead to address bar spoofing" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT208934", + "url": "https://support.apple.com/kb/HT208934" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "An inconsistent user interface issue was addressed with improved state management. This issue affected versions prior to Safari 11.1.2, iOS 12." } ] } diff --git a/2018/4xxx/CVE-2018-4363.json b/2018/4xxx/CVE-2018-4363.json index 6efac01b18c..34fa069e909 100644 --- a/2018/4xxx/CVE-2018-4363.json +++ b/2018/4xxx/CVE-2018-4363.json @@ -1,17 +1,71 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4363", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4363", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, watchOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, tvOS 12, watchOS 5" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "An application may be able to read restricted memory" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209108", + "url": "https://support.apple.com/kb/HT209108" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "An input validation issue existed in the kernel. This issue was addressed with improved input validation. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5." } ] } diff --git a/2018/4xxx/CVE-2018-4365.json b/2018/4xxx/CVE-2018-4365.json index 364b3c0e5c8..41a4508ce96 100644 --- a/2018/4xxx/CVE-2018-4365.json +++ b/2018/4xxx/CVE-2018-4365.json @@ -1,17 +1,61 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4365", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4365", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12.1" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing a maliciously crafted vcf file may lead to a denial of service" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209192", + "url": "https://support.apple.com/kb/HT209192" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "An out-of-bounds read was addressed with improved bounds checking. This issue affected versions prior to iOS 12.1." } ] } diff --git a/2018/4xxx/CVE-2018-4366.json b/2018/4xxx/CVE-2018-4366.json index 41c217788c3..8c7f9efe5d7 100644 --- a/2018/4xxx/CVE-2018-4366.json +++ b/2018/4xxx/CVE-2018-4366.json @@ -1,17 +1,61 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4366", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4366", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12.1" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A remote attacker may be able to leak memory" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209192", + "url": "https://support.apple.com/kb/HT209192" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12.1." } ] } diff --git a/2018/4xxx/CVE-2018-4367.json b/2018/4xxx/CVE-2018-4367.json index b5cfb0d55ee..b74632e9f9d 100644 --- a/2018/4xxx/CVE-2018-4367.json +++ b/2018/4xxx/CVE-2018-4367.json @@ -1,17 +1,61 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4367", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4367", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12.1" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A remote attacker may be able to initiate a FaceTime call causing arbitrary code execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209192", + "url": "https://support.apple.com/kb/HT209192" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12.1." } ] } diff --git a/2018/4xxx/CVE-2018-4368.json b/2018/4xxx/CVE-2018-4368.json index fa47419d400..a3e06fe5ed7 100644 --- a/2018/4xxx/CVE-2018-4368.json +++ b/2018/4xxx/CVE-2018-4368.json @@ -1,17 +1,76 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4368", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4368", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, macOS, tvOS, watchOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12.1, macOS Mojave 10.14.1, tvOS 12.1, watchOS 5.1" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "An attacker in a privileged position may be able to perform a denial of service attack" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209193", + "url": "https://support.apple.com/kb/HT209193" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209192", + "url": "https://support.apple.com/kb/HT209192" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209195", + "url": "https://support.apple.com/kb/HT209195" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209194", + "url": "https://support.apple.com/kb/HT209194" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A denial of service issue was addressed with improved validation. This issue affected versions prior to iOS 12.1, macOS Mojave 10.14.1, tvOS 12.1, watchOS 5.1." } ] } diff --git a/2018/4xxx/CVE-2018-4369.json b/2018/4xxx/CVE-2018-4369.json index a6f3aa8669f..4d6730b64c1 100644 --- a/2018/4xxx/CVE-2018-4369.json +++ b/2018/4xxx/CVE-2018-4369.json @@ -1,17 +1,76 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4369", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4369", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, macOS, tvOS, watchOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12.1, macOS Mojave 10.14.1, tvOS 12.1, watchOS 5.1" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Connecting to a VPN server may leak DNS queries to a DNS proxy" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209193", + "url": "https://support.apple.com/kb/HT209193" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209192", + "url": "https://support.apple.com/kb/HT209192" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209195", + "url": "https://support.apple.com/kb/HT209195" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209194", + "url": "https://support.apple.com/kb/HT209194" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A logic issue was addressed with improved state management. This issue affected versions prior to iOS 12.1, macOS Mojave 10.14.1, tvOS 12.1, watchOS 5.1." } ] } diff --git a/2018/4xxx/CVE-2018-4371.json b/2018/4xxx/CVE-2018-4371.json index d9d21bd8aa1..bbb3862bcd9 100644 --- a/2018/4xxx/CVE-2018-4371.json +++ b/2018/4xxx/CVE-2018-4371.json @@ -1,17 +1,76 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4371", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4371", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, macOS, tvOS, watchOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12.1, macOS Mojave 10.14.1, tvOS 12.1, watchOS 5.1" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "An application may be able to gain elevated privileges" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209193", + "url": "https://support.apple.com/kb/HT209193" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209192", + "url": "https://support.apple.com/kb/HT209192" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209195", + "url": "https://support.apple.com/kb/HT209195" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209194", + "url": "https://support.apple.com/kb/HT209194" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "An out-of-bounds read was addressed with improved input validation. This issue affected versions prior to iOS 12.1, macOS Mojave 10.14.1, tvOS 12.1, watchOS 5.1." } ] } diff --git a/2018/4xxx/CVE-2018-4372.json b/2018/4xxx/CVE-2018-4372.json index 99784fb467f..6f299779241 100644 --- a/2018/4xxx/CVE-2018-4372.json +++ b/2018/4xxx/CVE-2018-4372.json @@ -1,17 +1,86 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4372", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4372", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing maliciously crafted web content may lead to arbitrary code execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209192", + "url": "https://support.apple.com/kb/HT209192" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209195", + "url": "https://support.apple.com/kb/HT209195" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209194", + "url": "https://support.apple.com/kb/HT209194" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209197", + "url": "https://support.apple.com/kb/HT209197" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209198", + "url": "https://support.apple.com/kb/HT209198" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209196", + "url": "https://support.apple.com/kb/HT209196" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8." } ] } diff --git a/2018/4xxx/CVE-2018-4373.json b/2018/4xxx/CVE-2018-4373.json index 1c3beec8e9a..2bbb7ed5242 100644 --- a/2018/4xxx/CVE-2018-4373.json +++ b/2018/4xxx/CVE-2018-4373.json @@ -1,17 +1,81 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4373", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4373", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, watchOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing maliciously crafted web content may lead to arbitrary code execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209192", + "url": "https://support.apple.com/kb/HT209192" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209195", + "url": "https://support.apple.com/kb/HT209195" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209197", + "url": "https://support.apple.com/kb/HT209197" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209198", + "url": "https://support.apple.com/kb/HT209198" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209196", + "url": "https://support.apple.com/kb/HT209196" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8." } ] } diff --git a/2018/4xxx/CVE-2018-4374.json b/2018/4xxx/CVE-2018-4374.json index 80939089dc0..144f0139df8 100644 --- a/2018/4xxx/CVE-2018-4374.json +++ b/2018/4xxx/CVE-2018-4374.json @@ -1,17 +1,81 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4374", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4374", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, watchOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Enabling the Safari Reader feature on a maliciously crafted webpage may lead to universal cross site scripting" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209192", + "url": "https://support.apple.com/kb/HT209192" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209195", + "url": "https://support.apple.com/kb/HT209195" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209197", + "url": "https://support.apple.com/kb/HT209197" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209198", + "url": "https://support.apple.com/kb/HT209198" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209196", + "url": "https://support.apple.com/kb/HT209196" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A logic issue was addressed with improved validation. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8." } ] } diff --git a/2018/4xxx/CVE-2018-4375.json b/2018/4xxx/CVE-2018-4375.json index f5e412970f4..84d0094604f 100644 --- a/2018/4xxx/CVE-2018-4375.json +++ b/2018/4xxx/CVE-2018-4375.json @@ -1,17 +1,81 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4375", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4375", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, watchOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing maliciously crafted web content may lead to arbitrary code execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209192", + "url": "https://support.apple.com/kb/HT209192" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209195", + "url": "https://support.apple.com/kb/HT209195" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209197", + "url": "https://support.apple.com/kb/HT209197" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209198", + "url": "https://support.apple.com/kb/HT209198" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209196", + "url": "https://support.apple.com/kb/HT209196" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8." } ] } diff --git a/2018/4xxx/CVE-2018-4376.json b/2018/4xxx/CVE-2018-4376.json index 45b1d57aa80..9a4188e1cba 100644 --- a/2018/4xxx/CVE-2018-4376.json +++ b/2018/4xxx/CVE-2018-4376.json @@ -1,17 +1,81 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4376", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4376", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, watchOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing maliciously crafted web content may lead to arbitrary code execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209192", + "url": "https://support.apple.com/kb/HT209192" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209195", + "url": "https://support.apple.com/kb/HT209195" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209197", + "url": "https://support.apple.com/kb/HT209197" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209198", + "url": "https://support.apple.com/kb/HT209198" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209196", + "url": "https://support.apple.com/kb/HT209196" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8." } ] } diff --git a/2018/4xxx/CVE-2018-4377.json b/2018/4xxx/CVE-2018-4377.json index 4a42a3d8cda..c9016777b02 100644 --- a/2018/4xxx/CVE-2018-4377.json +++ b/2018/4xxx/CVE-2018-4377.json @@ -1,17 +1,81 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4377", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4377", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, watchOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Enabling the Safari Reader feature on a maliciously crafted webpage may lead to universal cross site scripting" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209192", + "url": "https://support.apple.com/kb/HT209192" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209195", + "url": "https://support.apple.com/kb/HT209195" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209197", + "url": "https://support.apple.com/kb/HT209197" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209198", + "url": "https://support.apple.com/kb/HT209198" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209196", + "url": "https://support.apple.com/kb/HT209196" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8." } ] } diff --git a/2018/4xxx/CVE-2018-4378.json b/2018/4xxx/CVE-2018-4378.json index 2a149951b3b..f2abf896cc9 100644 --- a/2018/4xxx/CVE-2018-4378.json +++ b/2018/4xxx/CVE-2018-4378.json @@ -1,17 +1,86 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4378", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4378", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing maliciously crafted web content may lead to code execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209192", + "url": "https://support.apple.com/kb/HT209192" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209195", + "url": "https://support.apple.com/kb/HT209195" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209194", + "url": "https://support.apple.com/kb/HT209194" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209197", + "url": "https://support.apple.com/kb/HT209197" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209198", + "url": "https://support.apple.com/kb/HT209198" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209196", + "url": "https://support.apple.com/kb/HT209196" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A memory corruption issue was addressed with improved validation. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8." } ] } diff --git a/2018/4xxx/CVE-2018-4382.json b/2018/4xxx/CVE-2018-4382.json index 6def7384096..8caa55d8040 100644 --- a/2018/4xxx/CVE-2018-4382.json +++ b/2018/4xxx/CVE-2018-4382.json @@ -1,17 +1,86 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4382", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4382", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing maliciously crafted web content may lead to arbitrary code execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209192", + "url": "https://support.apple.com/kb/HT209192" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209195", + "url": "https://support.apple.com/kb/HT209195" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209194", + "url": "https://support.apple.com/kb/HT209194" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209197", + "url": "https://support.apple.com/kb/HT209197" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209198", + "url": "https://support.apple.com/kb/HT209198" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209196", + "url": "https://support.apple.com/kb/HT209196" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8." } ] } diff --git a/2018/4xxx/CVE-2018-4383.json b/2018/4xxx/CVE-2018-4383.json index 187c8a67913..daeee8d9049 100644 --- a/2018/4xxx/CVE-2018-4383.json +++ b/2018/4xxx/CVE-2018-4383.json @@ -1,17 +1,76 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4383", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4383", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, macOS, tvOS, watchOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "An application may be able to execute arbitrary code with kernel privileges" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209107", + "url": "https://support.apple.com/kb/HT209107" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209106", + "url": "https://support.apple.com/kb/HT209106" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209139", + "url": "https://support.apple.com/kb/HT209139" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209108", + "url": "https://support.apple.com/kb/HT209108" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A memory corruption issue was addressed with improved state management. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5." } ] } diff --git a/2018/4xxx/CVE-2018-4384.json b/2018/4xxx/CVE-2018-4384.json index 8798df34921..de9b4f3f138 100644 --- a/2018/4xxx/CVE-2018-4384.json +++ b/2018/4xxx/CVE-2018-4384.json @@ -1,17 +1,66 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4384", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4384", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, watchOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12.1, watchOS 5.1" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing malicious video via FaceTime may lead to arbitrary code execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209192", + "url": "https://support.apple.com/kb/HT209192" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209195", + "url": "https://support.apple.com/kb/HT209195" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12.1, watchOS 5.1." } ] } diff --git a/2018/4xxx/CVE-2018-4385.json b/2018/4xxx/CVE-2018-4385.json index 99ad3504eff..93f13591d99 100644 --- a/2018/4xxx/CVE-2018-4385.json +++ b/2018/4xxx/CVE-2018-4385.json @@ -1,17 +1,61 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4385", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4385", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12.1" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Visiting a malicious website may lead to address bar spoofing" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209192", + "url": "https://support.apple.com/kb/HT209192" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A logic issue was addressed with improved state management. This issue affected versions prior to iOS 12.1." } ] } diff --git a/2018/4xxx/CVE-2018-4386.json b/2018/4xxx/CVE-2018-4386.json index 832485c8a31..3f2aab6e95f 100644 --- a/2018/4xxx/CVE-2018-4386.json +++ b/2018/4xxx/CVE-2018-4386.json @@ -1,17 +1,86 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4386", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4386", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Processing maliciously crafted web content may lead to arbitrary code execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209192", + "url": "https://support.apple.com/kb/HT209192" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209195", + "url": "https://support.apple.com/kb/HT209195" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209194", + "url": "https://support.apple.com/kb/HT209194" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209197", + "url": "https://support.apple.com/kb/HT209197" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209198", + "url": "https://support.apple.com/kb/HT209198" + }, + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209196", + "url": "https://support.apple.com/kb/HT209196" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8." } ] } diff --git a/2018/4xxx/CVE-2018-4387.json b/2018/4xxx/CVE-2018-4387.json index e0dd27b117b..c495e52bdeb 100644 --- a/2018/4xxx/CVE-2018-4387.json +++ b/2018/4xxx/CVE-2018-4387.json @@ -1,17 +1,61 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2018-4387", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2018-4387", + "ASSIGNER": "product-security@apple.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "iOS", + "version": { + "version_data": [ + { + "version_value": "Versions prior to: iOS 12.1" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "A local attacker may be able to view photos from the lock screen" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://support.apple.com/kb/HT209192", + "url": "https://support.apple.com/kb/HT209192" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A lock screen issue allowed access to photos via Reply With Message on a locked device. This issue was addressed with improved state management. This issue affected versions prior to iOS 12.1." } ] }