Security News > 2018 > April > Apple device users, stay away from QR codes until you upgrade

Apple device users, stay away from QR codes until you upgrade
2018-04-25 15:24

It’s time to update your Mac and iOS-powered devices again: Apple has plugged four vulnerabilities, two of which could be exploited to execute arbitrary code if a user visits a malicious website. The two critical vulnerabilities (CVE-2018-4200, CVE-2018-4204) affect WebKit, the web browser engine used in Apple’s Safari browser (both the Mac and the iOS version). They have been discovered and flagged by Ivan Fratric of Google Project Zero and Richard Zhu working with Trend … More → The post Apple device users, stay away from QR codes until you upgrade appeared first on Help Net Security.


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/dkcG7SCGsLE/

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2018-06-08 CVE-2018-4200 Use After Free vulnerability in multiple products
An issue was discovered in certain Apple products.
network
low complexity
apple canonical CWE-416
8.8
2018-06-08 CVE-2018-4204 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
An issue was discovered in certain Apple products.
network
low complexity
apple CWE-119
8.8

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Apple 72 238 1567 2279 265 4349