CVE-2018-4282: Input Validation
First published: Mon Jul 09 2018(Updated: )
Kernel. An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation.
Credit: Adam Donenfeld @doadam the Zimperium zLabs TeamProteas Qihoo 360 Nirvan TeamValentin "slashd" Shilnenkov Adam Donenfeld @doadam the Zimperium zLabs TeamProteas Qihoo 360 Nirvan TeamValentin "slashd" Shilnenkov Adam Donenfeld @doadam the Zimperium zLabs TeamProteas Qihoo 360 Nirvan TeamValentin "slashd" Shilnenkov product-security@apple.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple watchOS | <4.3.2 | 4.3.2 |
| Apple iOS | <11.4.1 | 11.4.1 |
| Apple tvOS | <11.4.1 | 11.4.1 |
| Apple iPhone OS | <11.4.1 | |
| Apple tvOS | <11.4.1 | |
| Apple watchOS | <4.3.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2018-4293
- CVE-2018-4269
- CVE-2018-4290
- CVE-2018-4282
- CVE-2018-4280
- CVE-2018-4248
- CVE-2018-4277
- CVE-2018-4270
- CVE-2018-4284
- CVE-2018-4266
- CVE-2018-4262
- CVE-2018-4264
- CVE-2018-4272
- CVE-2018-4271
- CVE-2018-4273
- CVE-2018-4278
- CVE-2018-4261
- CVE-2018-4263
- CVE-2018-4265
- CVE-2018-4267
- CVE-2018-4327
- CVE-2018-4216
- CVE-2018-4274
- CVE-2018-4260
- CVE-2018-4275
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2018-4282.
What is the severity of CVE-2018-4282?
CVE-2018-4282 has a severity rating of 5.5 (medium).
Which versions of iOS are affected by CVE-2018-4282?
Versions prior to iOS 11.4.1 are affected by CVE-2018-4282.
Which versions of tvOS are affected by CVE-2018-4282?
Versions prior to tvOS 11.4.1 are affected by CVE-2018-4282.
Which versions of watchOS are affected by CVE-2018-4282?
Versions prior to watchOS 4.3.2 are affected by CVE-2018-4282.
How can I fix CVE-2018-4282?
To fix CVE-2018-4282, you should update your iOS, tvOS, or watchOS to version 11.4.1 or later.
Where can I find more information about CVE-2018-4282?
You can find more information about CVE-2018-4282 on the Apple support website.
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- collector/apple-support
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- agent/event
- agent/trending
- vendor/apple
- canonical/apple watchos
- canonical/apple iphone os
- canonical/apple tvos
- canonical/apple ios