Vulnerabilities > Apple > Iphone OS > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-01-11 | CVE-2018-4277 | Improper Input Validation vulnerability in Apple products In iOS before 11.4.1, watchOS before 4.3.2, tvOS before 11.4.1, Safari before 11.1.1, macOS High Sierra before 10.13.6, a spoofing issue existed in the handling of URLs. | 5.0 |
| 2019-01-11 | CVE-2018-4194 | Out-of-bounds Read vulnerability in Apple products In iOS before 11.4, iCloud for Windows before 7.5, watchOS before 4.3.1, iTunes before 12.7.5 for Windows, and macOS High Sierra before 10.13.5, an out-of-bounds read was addressed with improved input validation. | 6.8 |
| 2019-01-11 | CVE-2018-4185 | Information Exposure vulnerability in Apple products In iOS before 11.3, tvOS before 11.3, watchOS before 4.3, and macOS before High Sierra 10.13.4, an information disclosure issue existed in the transition of program state. | 5.0 |
| 2019-01-11 | CVE-2018-4147 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products In iCloud for Windows before 7.3, Safari before 11.0.3, iTunes before 12.7.3 for Windows, and iOS before 11.2.5, multiple memory corruption issues exist and were addressed with improved memory handling. | 6.8 |
| 2019-01-11 | CVE-2017-2411 | 7PK - Security Features vulnerability in Apple Iphone OS In iOS before 11.2, exchange rates were retrieved from HTTP rather than HTTPS. | 4.3 |
| 2019-01-11 | CVE-2017-13891 | Improper Input Validation vulnerability in Apple Iphone OS In iOS before 11.2, an inconsistent user interface issue was addressed through improved state management. | 4.3 |
| 2019-01-11 | CVE-2017-13888 | Incorrect Type Conversion or Cast vulnerability in Apple Iphone OS In iOS before 11.2, a type confusion issue was addressed with improved memory handling. | 5.0 |
| 2019-01-11 | CVE-2016-4644 | Information Exposure vulnerability in Apple TV, Iphone OS and mac OS In iOS before 9.3.3, tvOS before 9.2.2, and OS X El Capitan before v10.11.6 and Security Update 2016-004, a downgrade issue existed with HTTP authentication credentials saved in Keychain. | 4.0 |
| 2019-01-11 | CVE-2016-4643 | Information Exposure vulnerability in Apple TV, Iphone OS and mac OS In iOS before 9.3.3, tvOS before 9.2.2, and OS X El Capitan before v10.11.6 and Security Update 2016-004, a validation issue existed in the parsing of 407 responses. | 4.0 |
| 2019-01-11 | CVE-2016-4642 | 7PK - Security Features vulnerability in Apple TV, Iphone OS and mac OS In iOS before 9.3.3, tvOS before 9.2.2, and OS X El Capitan before v10.11.6 and Security Update 2016-004, proxy authentication incorrectly reported HTTP proxies received credentials securely. | 4.3 |