CVE-2018-4256: Input Validation

Q: What is the vulnerability ID of this vulnerability?

The vulnerability ID of this vulnerability is CVE-2018-4256.

Q: What is the severity of CVE-2018-4256?

CVE-2018-4256 has a severity of medium (5.5).

Q: Which operating systems are affected by CVE-2018-4256?

macOS High Sierra before 10.13.5, Apple macOS High Sierra versions up to 10.13.5, Apple Sierra, and Apple El Capitan are affected by CVE-2018-4256.

Q: How was CVE-2018-4256 addressed?

CVE-2018-4256 was addressed with improved input validation.

Q: Is there any more information available about CVE-2018-4256?

Yes, you can find more information about CVE-2018-4256 at the following references: [link](https://support.apple.com/HT208849) and [link](https://support.apple.com/en-us/HT208849).

Published Jun 1, 2018

Updated

AMD. An out-of-bounds read was addressed with improved input validation.

Other sources

In macOS High Sierra before 10.13.5, an out-of-bounds read was addressed with improved input validation.

Credit

shrek_wzw(Qihoo 360 Nirvan Team)

Affected Software

4 affected componentsFixes available

Apple macOS High Sierra<10.13.5

10.13.5

Apple Sierra

Apple El Capitan

Apple iOS and macOS<10.13.5

Event History

Jan 11, 2019

CVE Published

via MITRE·06:00 PM

Data Sourced

via MITRE·06:00 PM

Description

Parent advisories

This vulnerability appears in the following advisories.

HT208849

Frequently Asked Questions

What is the vulnerability ID of this vulnerability?

The vulnerability ID of this vulnerability is CVE-2018-4256.

What is the severity of CVE-2018-4256?

CVE-2018-4256 has a severity of medium (5.5).

Which operating systems are affected by CVE-2018-4256?

macOS High Sierra before 10.13.5, Apple macOS High Sierra versions up to 10.13.5, Apple Sierra, and Apple El Capitan are affected by CVE-2018-4256.

How was CVE-2018-4256 addressed?