CVE-2018-4307: Input Validation

Q: What is CVE-2018-4307?

CVE-2018-4307 is a logic issue that was addressed with improved state management in Safari and iOS.

Q: How does CVE-2018-4307 affect Safari?

CVE-2018-4307 affects versions of Safari prior to Safari 12.

Q: How can I check if my version of Safari is affected by CVE-2018-4307?

You can check if your version of Safari is affected by CVE-2018-4307 by verifying if it is a version prior to Safari 12.

Q: What is the severity of CVE-2018-4307?

CVE-2018-4307 has a severity rating of medium.

Q: How can I fix CVE-2018-4307?

To fix CVE-2018-4307, update Safari to the latest version (Safari 12 or higher).

Published Sep 17, 2018

Updated

A logic issue was addressed with improved state management. This issue affected versions prior to iOS 12, Safari 12.

Other sources

Safari. A logic issue was addressed with improved state management.

Credit

Rafay Baloch(Pakistan Telecommunications Authority)

Affected Software

4 affected componentsFixes available

Safari<12

Apple iOS and iPadOS<12

Safari<12

iPhone OS<12.0

Event History

Apr 3, 2019

CVE Published

via MITRE·05:43 PM

Data Sourced

via MITRE·05:43 PM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

Peer vulnerabilities

Found alongside the following vulnerabilities.

Frequently Asked Questions

What is CVE-2018-4307?

CVE-2018-4307 is a logic issue that was addressed with improved state management in Safari and iOS.

How does CVE-2018-4307 affect Safari?