CVE-2018-4260: Input Validation

Q: What is CVE-2018-4260?

CVE-2018-4260 is a vulnerability related to an inconsistent user interface issue in Apple iOS and Safari prior to versions 11.4.1 and 11.1.2 respectively.

Q: How does CVE-2018-4260 affect Apple devices?

CVE-2018-4260 affects Apple devices running iOS versions prior to 11.4.1 and Safari versions prior to 11.1.2.

Q: What is the severity of CVE-2018-4260?

The severity of CVE-2018-4260 is medium with a CVSS score of 6.5.

Q: How can I fix CVE-2018-4260?

To fix CVE-2018-4260, update your Apple device to iOS version 11.4.1 or later, and Safari to version 11.1.2 or later.

Q: Where can I find more information about CVE-2018-4260?

You can find more information about CVE-2018-4260 on the Apple support website: [https://support.apple.com/kb/HT208934](https://support.apple.com/kb/HT208934), [https://support.apple.com/kb/HT208938](https://support.apple.com/kb/HT208938), [https://support.apple.com/en-us/HT208934](https://support.apple.com/en-us/HT208934).

Published Jul 9, 2018

Updated

An inconsistent user interface issue was addressed with improved state management. This issue affected versions prior to iOS 11.4.1, Safari 11.1.2.

Other sources

WebKit Page Loading. An inconsistent user interface issue was addressed with improved state management.

Credit

xisigr(Tencent)

Affected Software

4 affected componentsFixes available

Safari<11.1.2

11.1.2

Apple iOS and iPadOS<11.4.1

11.4.1

Safari<11.1.2

iPhone OS<11.4.1

Event History

Apr 3, 2019

CVE Published

via MITRE·05:43 PM

Data Sourced

via MITRE·05:43 PM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

Peer vulnerabilities

Found alongside the following vulnerabilities.

Frequently Asked Questions

What is CVE-2018-4260?

CVE-2018-4260 is a vulnerability related to an inconsistent user interface issue in Apple iOS and Safari prior to versions 11.4.1 and 11.1.2 respectively.

How does CVE-2018-4260 affect Apple devices?