Apple device users, stay away from QR codes until you upgrade

2018-04-25 15:24

It’s time to update your Mac and iOS-powered devices again: Apple has plugged four vulnerabilities, two of which could be exploited to execute arbitrary code if a user visits a malicious website. The two critical vulnerabilities (CVE-2018-4200, CVE-2018-4204) affect WebKit, the web browser engine used in Apple’s Safari browser (both the Mac and the iOS version). They have been discovered and flagged by Ivan Fratric of Google Project Zero and Richard Zhu working with Trend … More → The post Apple device users, stay away from QR codes until you upgrade appeared first on Help Net Security.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/dkcG7SCGsLE/

#apple #qrcode #upgrade #CVE-2018-4204 #CVE-2018-4200

Related Vulnerability

DATE	CVE	VULNERABILITY TITLE	RISK
2018-06-08	CVE-2018-4200	Use After Free vulnerability in Apple products An issue was discovered in certain Apple products. network apple microsoft canonical CWE-416	6.8
2018-06-08	CVE-2018-4204	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products An issue was discovered in certain Apple products. network apple microsoft CWE-119	6.8

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Apple		135	564	4102	1567	2438	8671