National Vulnerability Database

Subscribe to National Vulnerability Database feed
This feed contains the most recent CVE cyber vulnerabilities published within the National Vulnerability Database.
Updated: 15 hours 52 min ago

CVE-2018-4183

Fri, 01/11/2019 - 13:29
In macOS High Sierra before 10.13.5, an access issue was addressed with additional sandbox restrictions.
Categories: Security News

CVE-2018-4185

Fri, 01/11/2019 - 13:29
In iOS before 11.3, tvOS before 11.3, watchOS before 4.3, and macOS before High Sierra 10.13.4, an information disclosure issue existed in the transition of program state. This issue was addressed with improved state handling.
Categories: Security News

CVE-2018-4186

Fri, 01/11/2019 - 13:29
In Safari before 11.1, an information leakage issue existed in the handling of downloads in Safari Private Browsing. This issue was addressed with additional validation.
Categories: Security News

CVE-2018-4189

Fri, 01/11/2019 - 13:29
In iOS before 11.2.5, macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, watchOS before 4.2.2, and tvOS before 11.2.5, a memory corruption issue exists and was addressed with improved memory handling.
Categories: Security News

CVE-2018-4194

Fri, 01/11/2019 - 13:29
In iOS before 11.4, iCloud for Windows before 7.5, watchOS before 4.3.1, iTunes before 12.7.5 for Windows, and macOS High Sierra before 10.13.5, an out-of-bounds read was addressed with improved input validation.
Categories: Security News

CVE-2018-4207

Fri, 01/11/2019 - 13:29
In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks.
Categories: Security News

CVE-2018-4208

Fri, 01/11/2019 - 13:29
In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks.
Categories: Security News

CVE-2018-4209

Fri, 01/11/2019 - 13:29
In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks.
Categories: Security News

CVE-2016-4642

Fri, 01/11/2019 - 13:29
In iOS before 9.3.3, tvOS before 9.2.2, and OS X El Capitan before v10.11.6 and Security Update 2016-004, proxy authentication incorrectly reported HTTP proxies received credentials securely. This issue was addressed through improved warnings.
Categories: Security News

CVE-2016-4643

Fri, 01/11/2019 - 13:29
In iOS before 9.3.3, tvOS before 9.2.2, and OS X El Capitan before v10.11.6 and Security Update 2016-004, a validation issue existed in the parsing of 407 responses. This issue was addressed through improved response validation.
Categories: Security News

CVE-2016-4644

Fri, 01/11/2019 - 13:29
In iOS before 9.3.3, tvOS before 9.2.2, and OS X El Capitan before v10.11.6 and Security Update 2016-004, a downgrade issue existed with HTTP authentication credentials saved in Keychain. This issue was addressed by storing the authentication types with the credentials.
Categories: Security News

CVE-2016-7576

Fri, 01/11/2019 - 13:29
In iOS before 9.3.3, a memory corruption issue existed in the kernel. This issue was addressed through improved memory handling.
Categories: Security News

CVE-2017-13886

Fri, 01/11/2019 - 13:29
In macOS High Sierra before 10.13.2, an access issue existed with privileged WiFi system configuration. This issue was addressed with additional restrictions.
Categories: Security News

CVE-2017-13887

Fri, 01/11/2019 - 13:29
In macOS High Sierra before 10.13.2, a logic issue existed in APFS when deleting keys during hibernation. This was addressed with improved state management.
Categories: Security News

CVE-2017-13888

Fri, 01/11/2019 - 13:29
In iOS before 11.2, a type confusion issue was addressed with improved memory handling.
Categories: Security News

CVE-2017-13889

Fri, 01/11/2019 - 13:29
In macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, a logic error existed in the validation of credentials. This was addressed with improved credential validation.
Categories: Security News

CVE-2017-13891

Fri, 01/11/2019 - 13:29
In iOS before 11.2, an inconsistent user interface issue was addressed through improved state management.
Categories: Security News

CVE-2017-2411

Fri, 01/11/2019 - 13:29
In iOS before 11.2, exchange rates were retrieved from HTTP rather than HTTPS. This was addressed by enabling HTTPS for exchange rates.
Categories: Security News

CVE-2018-4147

Fri, 01/11/2019 - 13:29
In iCloud for Windows before 7.3, Safari before 11.0.3, iTunes before 12.7.3 for Windows, and iOS before 11.2.5, multiple memory corruption issues exist and were addressed with improved memory handling.
Categories: Security News

CVE-2018-4169

Fri, 01/11/2019 - 13:29
In macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, an out-of-bounds read was addressed with improved input validation.
Categories: Security News

Pages