logo

CVE-2018-4344 - Apple Multiple Products Memory Corruption Vulnerability

Apple | Multiple Products

  • Date Added:
  • 2022-06-27
  • Due Date:
  • 2022-07-18
Vulnerability Name

Apple Multiple Products Memory Corruption Vulnerability

Description

Apple iOS, macOS, tvOS, and watchOS contain a memory corruption vulnerability which can allow for code execution.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply updates per vendor instructions.

Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2018-4344
Latest Security News
Microsoft apologizes for removing VSCode extensions used by millions

Microsoft apologizes for removing VSCode extensions used by millions

New SuperBlack ransomware exploits Fortinet auth bypass flaws

New SuperBlack ransomware exploits Fortinet auth bypass flaws

Windows Notepad to get AI text summarization in Windows 11

Windows Notepad to get AI text summarization in Windows 11

Microsoft says button to restore classic Outlook is broken

Microsoft says button to restore classic Outlook is broken

Juniper patches bug that let Chinese cyberspies backdoor routers

Juniper patches bug that let Chinese cyberspies backdoor routers

GitLab patches critical authentication bypass vulnerabilities

GitLab patches critical authentication bypass vulnerabilities

Microsoft Warns of ClickFix Phishing Campaign Targeting Hospitality Sector via Fake Booking[.]com Emails

Microsoft Warns of ClickFix Phishing Campaign Targeting Hospitality Sector via Fake Booking[.]com Emails

ClickFix attack delivers infostealers, RATs in fake Booking.com emails

ClickFix attack delivers infostealers, RATs in fake Booking.com emails

Top Alert List
Content Security Policy (CSP) Header Not Set
CSP
MediumAbsence of Anti-CSRF Tokens
MediumMissing Anti-clickjacking Header
MediumContent Security Policy (CSP) Header Not Set
InformationalInformation Disclosure - Suspicious Comments
LowCross-Domain JavaScript Source File Inclusion
InformationalRe-examine Cache-control Directives
HighPII Disclosure
InformationalModern Web Application
Latest CVE List
CVE-2025-24201 Apple Multiple Products WebKit Out-of-Bounds Write Vulnerability
CVE-2025-21590 Juniper Junos OS Improper Isolation or Compartmentalization Vulnerability
CVE-2025-26633 Microsoft Windows Management Console (MMC) Improper Neutralization Vulnerability
CVE-2025-24983 Microsoft Windows Win32k Use-After-Free Vulnerability
CVE-2025-24984 Microsoft Windows NTFS Information Disclosure Vulnerability
CVE-2025-24985 Microsoft Windows Fast FAT File System Driver Integer Overflow Vulnerability
CVE-2025-24991 Microsoft Windows NTFS Out-Of-Bounds Read Vulnerability
CVE-2025-24993 Microsoft Windows NTFS Heap-Based Buffer Overflow Vulnerability
CVE-2025-25181 Advantive VeraCore SQL Injection Vulnerability
CVE-2024-57968 Advantive VeraCore Unrestricted File Upload Vulnerability
Top CWE List
CWE-693 Protection Mechanism Failure
CWE-1426 Improper Validation of Generative AI Output
HighCWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
HighCWE-200 Exposure of Sensitive Information to an Unauthorized Actor
CWE-1125 Excessive Attack Surface
CWE-1191 On-Chip Debug and Test Interface With Improper Access Control
CWE-1230 Exposure of Sensitive Information Through Metadata
CWE-1298 Hardware Logic Contains Race Conditions
CWE-1053 Missing Documentation for Design
CWE-1064 Invokable Control Element with Signature Containing an Excessive Number of Parameters

Free online web security scanner