CVE-2018-4319

Summary

A cross-origin issue existed with "iframe" elements. This was addressed with improved tracking of security origins. This issue affected versions prior to iOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

Affected Software

VendorProductVersion RangeStatus
n/aiOS, watchOS, Safari, iTunes for Windows, iCloud for WindowsVersions prior to: iOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7affected

Weaknesses

  • A malicious website may cause unexepected cross-origin behavior

ADP Enrichment

CVE Program Container

Additional References

References