Lucene search

PRIOn knowledge basePRION:CVE-2018-4278

HistoryJan 11, 2019 - 6:29 p.m.

Cross site scripting

2019-01-1118:29:00

PRIOn knowledge base

www.prio-n.com

4.8 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

73.7%

JSON

In Safari before 11.1.2, iTunes before 12.8 for Windows, iOS before 11.4.1, tvOS before 11.4.1, iCloud for Windows before 7.6, sound fetched through audio elements may be exfiltrated cross-origin. This issue was addressed with improved audio taint tracking.

CPENameOperatorVersion
icloudlt7.6
iphone_oslt11.4.1
ituneslt12.8
safarilt11.1.2
tvoslt11.4.1
ubuntu_linuxeq16.04
ubuntu_linuxeq18.04

Name	Operator	Version
icloud	lt	7.6
iphone_os	lt	11.4.1
itunes	lt	12.8
safari	lt	11.1.2
tvos	lt	11.4.1
ubuntu_linux	eq	16.04
ubuntu_linux	eq	18.04

References

www.securitytracker.com/id/1041232

exchange.xforce.ibmcloud.com/vulnerabilities/146479

security.gentoo.org/glsa/201808-04

support.apple.com/HT208932

support.apple.com/HT208933

support.apple.com/HT208934

support.apple.com/HT208936

support.apple.com/HT208938

usn.ubuntu.com/3743-1/