Vulnerabilities > Apple > MAC OS X > 10.13.2

DATE CVE VULNERABILITY TITLE RISK
2019-01-11 CVE-2018-4277 Improper Input Validation vulnerability in Apple products
In iOS before 11.4.1, watchOS before 4.3.2, tvOS before 11.4.1, Safari before 11.1.1, macOS High Sierra before 10.13.6, a spoofing issue existed in the handling of URLs.
network
low complexity
apple CWE-20
7.5
7.5
2019-01-11 CVE-2018-4258 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple mac OS X
In macOS High Sierra before 10.13.5, a buffer overflow was addressed with improved bounds checking.
network
low complexity
apple CWE-119
critical
 9.8
9.8
2019-01-11 CVE-2018-4257 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple mac OS X
In macOS High Sierra before 10.13.5, a buffer overflow was addressed with improved size validation.
network
low complexity
apple CWE-119
critical
 9.8
9.8
2019-01-11 CVE-2018-4256 Out-of-bounds Read vulnerability in Apple mac OS X
In macOS High Sierra before 10.13.5, an out-of-bounds read was addressed with improved input validation.
local
low complexity
apple CWE-125
5.5
5.5
2019-01-11 CVE-2018-4255 Out-of-bounds Read vulnerability in Apple mac OS X
In macOS High Sierra before 10.13.5, an out-of-bounds read was addressed with improved input validation.
local
low complexity
apple CWE-125
5.5
5.5
2019-01-11 CVE-2018-4254 Improper Input Validation vulnerability in Apple mac OS X
In macOS High Sierra before 10.13.5, an input validation issue existed in the kernel.
network
low complexity
apple CWE-20
critical
 9.8
9.8
2019-01-11 CVE-2018-4217 Information Exposure vulnerability in Apple mac OS X
In macOS High Sierra before 10.13.5, a privacy issue in the handling of Open Directory records was addressed with improved indexing.
network
low complexity
apple CWE-200
7.5
7.5
2019-01-11 CVE-2018-4194 Out-of-bounds Read vulnerability in Apple products
In iOS before 11.4, iCloud for Windows before 7.5, watchOS before 4.3.1, iTunes before 12.7.5 for Windows, and macOS High Sierra before 10.13.5, an out-of-bounds read was addressed with improved input validation.
network
low complexity
apple CWE-125
8.8
8.8
2019-01-11 CVE-2018-4189 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
In iOS before 11.2.5, macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, watchOS before 4.2.2, and tvOS before 11.2.5, a memory corruption issue exists and was addressed with improved memory handling.
network
low complexity
apple CWE-119
critical
 9.8
9.8
2019-01-11 CVE-2018-4185 Information Exposure vulnerability in Apple products
In iOS before 11.3, tvOS before 11.3, watchOS before 4.3, and macOS before High Sierra 10.13.4, an information disclosure issue existed in the transition of program state.
network
low complexity
apple CWE-200
7.5
7.5