First published: Tue May 29 2018(Updated: )
WebKit. A memory corruption issue was addressed with improved input validation.
Credit: found by OSS-Fuzz product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple iTunes for Windows | <12.7.5 | 12.7.5 |
Apple Safari | <11.1.1 | |
Apple iPhone OS | <11.4 | |
Apple tvOS | <11.4 | |
Apple watchOS | <4.3.1 | |
Apple iCloud | <7.5 | |
Microsoft Windows | ||
Apple iTunes | <12.7.5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2018-4214 is a memory corruption vulnerability in WebKit that affects various Apple products.
iOS before 11.4, Safari before 11.1.1, iCloud before 7.5 on Windows, iTunes before 12.7.5 on Windows, tvOS before 11.4, and watchOS before 4.3.1 are affected.
CVE-2018-4214 has a severity score of 8.8, classified as high.
To fix the CVE-2018-4214 vulnerability in iTunes for Windows, update to version 12.7.5 or higher.
You can find more information about CVE-2018-4214 on the Apple support page, Security Tracker, and the Gentoo GLSA advisory.