CVE-2018-4313: Input Validation
First published: Mon Sep 17 2018(Updated: )
A consistency issue existed in the handling of application snapshots. The issue was addressed with improved handling of message deletions. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5.
Credit: 11 anonymous researchers David Scott Enes Mert Ulu Abdullah MMehmet Ferit Daştan Van YMetin Altug Karakaya Kaliptus Medical OrganizationVinodh Swami Western Governoran anonymous researcher Abdullah Man anonymous researcher Abdullah Man anonymous researcher Abdullah Man anonymous researcher Abdullah Man anonymous researcher Abdullah Man anonymous researcher Abdullah Man anonymous researcher Abdullah Man anonymous researcher Abdullah Man anonymous researcher Abdullah Man anonymous researcher Abdullah Man anonymous researcher Abdullah MDavid Scott Abdullah MEnes Mert Ulu Abdullah MMehmet Ferit Daştan Van YMetin Altug Karakaya Kaliptus Medical OrganizationVinodh Swami Western Governor's University11 anonymous researchers David Scott Enes Mert Ulu Abdullah MMehmet Ferit Daştan Van YMetin Altug Karakaya Kaliptus Medical OrganizationVinodh Swami Western Governor product-security@apple.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple iPhone OS | <12.0 | |
| Apple tvOS | <12 | |
| Apple watchOS | <5.0 | |
| Apple iOS | <12 | 12 |
| Apple watchOS | <5 | 5 |
| Apple tvOS | <12 | 12 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2018-4126
- CVE-2018-4412
- CVE-2018-4414
- CVE-2018-4347
- CVE-2018-4433
- CVE-2018-4426
- CVE-2018-4331
- CVE-2018-4332
- CVE-2018-4343
- CVE-2018-4408
- CVE-2018-4341
- CVE-2018-4354
- CVE-2018-4383
- CVE-2018-4401
- CVE-2018-4305
- CVE-2018-4363
- CVE-2018-4336
- CVE-2018-4337
- CVE-2018-4340
- CVE-2018-4344
- CVE-2018-4425
- CVE-2018-4399
- CVE-2018-4407
- CVE-2018-4313
- CVE-2016-1777
- CVE-2018-4395
- CVE-2018-4203
- CVE-2018-4304
- CVE-2018-4319
- CVE-2018-4361
- CVE-2018-4474
- CVE-2018-4191
- CVE-2018-4311
- CVE-2018-4299
- CVE-2018-4359
- CVE-2018-4358
- CVE-2018-4321
- CVE-2018-5383
- CVE-2018-4316
- CVE-2018-4345
- CVE-2018-4323
- CVE-2018-4328
- CVE-2018-4197
- CVE-2018-4318
- CVE-2018-4306
- CVE-2018-4312
- CVE-2018-4314
- CVE-2018-4315
- CVE-2018-4317
- CVE-2018-4309
- CVE-2018-4360
- CVE-2018-4322
- CVE-2018-4356
- CVE-2018-4333
- CVE-2018-4355
- CVE-2018-4335
- CVE-2018-4326
- CVE-2018-4310
- CVE-2018-4352
- CVE-2018-4329
- CVE-2018-4307
- CVE-2018-4362
- CVE-2018-4325
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2018-4313.
What is the severity of CVE-2018-4313?
The severity of CVE-2018-4313 is medium with a score of 5.5.
Which versions of iOS are affected by CVE-2018-4313?
Versions prior to iOS 12 are affected by CVE-2018-4313.
Which versions of tvOS are affected by CVE-2018-4313?
Versions prior to tvOS 12 are affected by CVE-2018-4313.
Which versions of watchOS are affected by CVE-2018-4313?
Versions prior to watchOS 5 are affected by CVE-2018-4313.
How was CVE-2018-4313 addressed?
CVE-2018-4313 was addressed with improved handling of message deletions.
- agent/type
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/apple-support
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/event
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/tags
- agent/description
- collector/mitre-cve
- source/MITRE
- vendor/apple
- canonical/apple watchos
- canonical/apple iphone os
- canonical/apple tvos
- canonical/apple ios