First published: Mon Jul 09 2018(Updated: )
Last updated 24 July 2024
Credit: Omair Trend MicroMateusz Krzywicki Trend MicroArayz Trend Microfound by OSS-Fuzz Yu Zhou Jundong Xie Antcc Trend MicroArayz Pangu team working with Trend Microfound by OSS-Fuzz Omair Trend MicroMateusz Krzywicki Trend MicroArayz Trend Microfound by OSS-Fuzz Yu Zhou Jundong Xie Antcc Trend MicroArayz Pangu team working with Trend Microfound by OSS-Fuzz Omair Trend MicroMateusz Krzywicki Trend MicroArayz Trend Microfound by OSS-Fuzz Yu Zhou Jundong Xie Antcc Trend MicroArayz Pangu team working with Trend Microfound by OSS-Fuzz Mateusz Krzywicki Trend Microfound by OSS-Fuzz Yu Zhou Jundong Xie Antfound by OSS-Fuzz Omair Trend MicroMateusz Krzywicki Trend MicroArayz Trend Microfound by OSS-Fuzz Yu Zhou Jundong Xie Antcc Trend MicroArayz Pangu team working with Trend Microfound by OSS-Fuzz Omair Trend MicroMateusz Krzywicki Trend MicroArayz Trend Microfound by OSS-Fuzz Yu Zhou Jundong Xie Antcc Trend MicroArayz Pangu team working with Trend Microfound by OSS-Fuzz product-security@apple.com product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple iCloud for Windows | <7.6 | 7.6 |
Apple iTunes for Windows | <12.8 | 12.8 |
Apple Safari | <11.1.2 | 11.1.2 |
Apple watchOS | <4.3.2 | 4.3.2 |
Apple tvOS | <11.4.1 | 11.4.1 |
Apple iOS | <11.4.1 | 11.4.1 |
Apple Safari | <11.1.2 | |
Apple iPhone OS | <11.4.1 | |
Apple tvOS | <11.4.1 | |
Apple watchOS | <4.3.2 | |
Apple iCloud | <7.6 | |
Apple iTunes | <12.8 | |
Microsoft Windows | ||
All of | ||
Any of | ||
Apple iCloud | <7.6 | |
Apple iTunes | <12.8 | |
Microsoft Windows | ||
debian/webkit2gtk | 2.44.2-1~deb11u1 2.44.3-1~deb11u1 2.44.2-1~deb12u1 2.44.3-1~deb12u1 2.46.0-2 2.46.1-1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Appears in the following advisories)
(Found alongside the following vulnerabilities)
CVE-2018-4272 is a vulnerability in WebKit that allows attackers to execute arbitrary code on a targeted system.
CVE-2018-4272 impacts versions of iOS prior to 11.4.1, allowing attackers to execute arbitrary code on vulnerable devices.
CVE-2018-4272 impacts Safari versions prior to 11.1.2, allowing attackers to execute arbitrary code on vulnerable systems.
To fix the CVE-2018-4272 vulnerability in WebKit2GTK, update to version 2.20.5-0ubuntu0.18.04.1 (for Ubuntu Bionic), 2.20.4 (for Ubuntu upstream), or 2.20.5-0ubuntu0.16.04.1 (for Ubuntu Xenial).
To fix the CVE-2018-4272 vulnerability in iTunes for Windows, update to version 12.8 or later.