CVE List - 2019 / April
Showing 101 - 200 of 1531 CVEs for April 2019 (Page 2 of 16)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2019-5421 | 2019-04-03 | Plataformatec Devise version 4.5.0 and earlier, using the lockable module contains a CWE-367 vulnerability in The `Devise::Models::Lockable` class, more specifically at the `#increment_failed_attempts` method. File location: lib/devise/models/lockable.rb that can result... |
| CVE-2019-5422 | 2019-04-03 | XSS in buttle npm package version 0.2.0 causes execution of attacker-provided code in the victim's browser when an attacker creates an arbitrary file on the server. |
| CVE-2019-5423 | 2019-04-03 | Path traversal vulnerability in http-live-simulator npm package version 1.0.5 allows arbitrary path to be accessed on the file system by a remote attacker. |
| CVE-2019-10723 | 2019-04-03 | An issue was discovered in PoDoFo 0.9.6. The PdfPagesTreeCache class in doc/PdfPagesTreeCache.cpp has an attempted excessive memory allocation because nInitialSize is not validated. |
| CVE-2017-7151 | 2019-04-03 | A race condition was addressed with additional validation. This issue affected versions prior to iOS 11.2, macOS High Sierra 10.13.2, tvOS 11.2, watchOS 4.2, iTunes 12.7.2 for Windows, macOS High... |
| CVE-2018-4126 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5, iTunes 12.9 for Windows, iCloud... |
| CVE-2018-4145 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.3, tvOS 11.3, watchOS 4.3, Safari 11.1, iTunes 12.7.4 for Windows, iCloud for... |
| CVE-2018-4153 | 2019-04-03 | An injection issue was addressed with improved validation. This issue affected versions prior to macOS Mojave 10.14. |
| CVE-2018-4178 | 2019-04-03 | A permissions issue existed in which execute permission was incorrectly granted. This issue was addressed with improved permission validation. This issue affected versions prior to macOS High Sierra 10.13.4. |
| CVE-2018-4191 | 2019-04-03 | A memory corruption issue was addressed with improved validation. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows... |
| CVE-2018-4195 | 2019-04-03 | An inconsistent user interface issue was addressed with improved state management. This issue affected versions prior to Safari 12. |
| CVE-2018-4197 | 2019-04-03 | A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows... |
| CVE-2018-4203 | 2019-04-03 | An out-of-bounds read was addressed with improved bounds checking. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. |
| CVE-2018-4216 | 2019-04-03 | A logic issue existed in the handling of call URLs. This issue was addressed with improved state management. This issue affected versions prior to iOS 11.4.1. |
| CVE-2018-4248 | 2019-04-03 | An out-of-bounds read was addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2. |
| CVE-2018-4260 | 2019-04-03 | An inconsistent user interface issue was addressed with improved state management. This issue affected versions prior to iOS 11.4.1, Safari 11.1.2. |
| CVE-2018-4261 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6. |
| CVE-2018-4263 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6. |
| CVE-2018-4264 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for... |
| CVE-2018-4265 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6. |
| CVE-2018-4266 | 2019-04-03 | A race condition was addressed with additional validation. This issue affected versions prior toiVersions prior to: OS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for... |
| CVE-2018-4267 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6. |
| CVE-2018-4268 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to macOS High Sierra 10.13.6. |
| CVE-2018-4269 | 2019-04-03 | A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2, iTunes 12.8 for Windows,... |
| CVE-2018-4270 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for... |
| CVE-2018-4271 | 2019-04-03 | Multiple memory corruption issues were addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for... |
| CVE-2018-4272 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for... |
| CVE-2018-4273 | 2019-04-03 | Multiple memory corruption issues were addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for... |
| CVE-2018-4274 | 2019-04-03 | A spoofing issue existed in the handling of URLs. This issue was addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, Safari 11.1.2. |
| CVE-2018-4275 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1. |
| CVE-2018-4276 | 2019-04-03 | A null pointer dereference was addressed with improved validation. This issue affected versions prior to macOS High Sierra 10.13.6. |
| CVE-2018-4279 | 2019-04-03 | An inconsistent user interface issue was addressed with improved state management. This issue affected versions prior to Safari 11.1.2. |
| CVE-2018-4280 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2. |
| CVE-2018-4282 | 2019-04-03 | An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1,... |
| CVE-2018-4283 | 2019-04-03 | An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue affected versions prior to macOS High Sierra 10.13.6. |
| CVE-2018-4284 | 2019-04-03 | A type confusion issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for... |
| CVE-2018-4285 | 2019-04-03 | A type confusion issue was addressed with improved memory handling. This issue affected versions prior to macOS High Sierra 10.13.6. |
| CVE-2018-4289 | 2019-04-03 | An information disclosure issue was addressed by removing the vulnerable code. This issue affected versions prior to macOS High Sierra 10.13.6. |
| CVE-2018-4290 | 2019-04-03 | A denial of service issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, watchOS 4.3.2. |
| CVE-2018-4293 | 2019-04-03 | A cookie management issue was addressed with improved checks. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2, iTunes 12.8 for Windows, iCloud... |
| CVE-2018-4295 | 2019-04-03 | An input validation issue was addressed with improved input validation. This issue affected versions prior to macOS Mojave 10.14. |
| CVE-2018-4299 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for... |
| CVE-2018-4303 | 2019-04-03 | An input validation issue was addressed with improved input validation. This issue affected versions prior to macOS Mojave 10.14, iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2. |
| CVE-2018-4304 | 2019-04-03 | A denial of service issue was addressed with improved validation. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. |
| CVE-2018-4305 | 2019-04-03 | An input validation issue was addressed with improved input validation. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5. |
| CVE-2018-4306 | 2019-04-03 | A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows... |
| CVE-2018-4307 | 2019-04-03 | A logic issue was addressed with improved state management. This issue affected versions prior to iOS 12, Safari 12. |
| CVE-2018-4308 | 2019-04-03 | An out-of-bounds read was addressed with improved bounds checking. This issue affected versions prior to macOS Mojave 10.14. |
| CVE-2018-4309 | 2019-04-03 | A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for... |
| CVE-2018-4310 | 2019-04-03 | An access issue was addressed with additional sandbox restrictions. This issue affected versions prior to iOS 12, macOS Mojave 10.14. |
| CVE-2018-4311 | 2019-04-03 | The issue was addressed by removing origin information. This issue affected versions prior to iOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7. |
| CVE-2018-4312 | 2019-04-03 | A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows... |
| CVE-2018-4313 | 2019-04-03 | A consistency issue existed in the handling of application snapshots. The issue was addressed with improved handling of message deletions. This issue affected versions prior to iOS 12, tvOS 12,... |
| CVE-2018-4314 | 2019-04-03 | A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows... |
| CVE-2018-4315 | 2019-04-03 | A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows... |
| CVE-2018-4316 | 2019-04-03 | A memory corruption issue was addressed with improved state management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7. |
| CVE-2018-4317 | 2019-04-03 | A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows... |
| CVE-2018-4318 | 2019-04-03 | A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows... |
| CVE-2018-4319 | 2019-04-03 | A cross-origin issue existed with "iframe" elements. This was addressed with improved tracking of security origins. This issue affected versions prior to iOS 12, watchOS 5, Safari 12, iTunes 12.9... |
| CVE-2018-4321 | 2019-04-03 | A validation issue existed in the entitlement verification. This issue was addressed with improved validation of the process entitlement. This issue affected versions prior to iOS 12, macOS Mojave 10.14,... |
| CVE-2018-4322 | 2019-04-03 | This issue was addressed with improved entitlements. This issue affected versions prior to iOS 12. |
| CVE-2018-4323 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7. |
| CVE-2018-4324 | 2019-04-03 | A permissions issue existed in the handling of the Apple ID. This issue was addressed with improved access controls. This issue affected versions prior to macOS Mojave 10.14. |
| CVE-2018-4325 | 2019-04-03 | A logic issue was addressed with improved restrictions. This issue affected versions prior to iOS 12. |
| CVE-2018-4326 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14. |
| CVE-2018-4327 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1. |
| CVE-2018-4328 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7. |
| CVE-2018-4329 | 2019-04-03 | Clearing a history item may not clear visits with redirect chains. The issue was addressed with improved data deletion. This issue affected versions prior to iOS 12, Safari 12. |
| CVE-2018-4331 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. |
| CVE-2018-4332 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. |
| CVE-2018-4333 | 2019-04-03 | A validation issue was addressed with improved input sanitization. This issue affected versions prior to iOS 12, macOS Mojave 10.14. |
| CVE-2018-4334 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to macOS Mojave 10.14. |
| CVE-2018-4335 | 2019-04-03 | A validation issue was addressed with improved input sanitization. This issue affected versions prior to iOS 12. |
| CVE-2018-4336 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. |
| CVE-2018-4337 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. |
| CVE-2018-4338 | 2019-04-03 | A validation issue was addressed with improved input sanitization. This issue affected versions prior to macOS Mojave 10.14. |
| CVE-2018-4340 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. |
| CVE-2018-4341 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. |
| CVE-2018-4342 | 2019-04-03 | A configuration issue was addressed with additional restrictions. This issue affected versions prior to macOS Mojave 10.14.1. |
| CVE-2018-4343 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. |
| CVE-2018-4345 | 2019-04-03 | A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for... |
| CVE-2018-4346 | 2019-04-03 | A validation issue existed which allowed local file access. This was addressed with input sanitization. This issue affected versions prior to macOS Mojave 10.14. |
| CVE-2018-4347 | 2019-04-03 | A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5, iTunes 12.9 for Windows,... |
| CVE-2018-4348 | 2019-04-03 | A validation issue was addressed with improved logic. This issue affected versions prior to macOS Mojave 10.14. |
| CVE-2018-4350 | 2019-04-03 | A memory corruption issue was addressed with improved input validation. This issue affected versions prior to macOS Mojave 10.14. |
| CVE-2018-4344 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. |
| CVE-2018-4351 | 2019-04-03 | A memory initialization issue was addressed with improved memory handling. This issue affected versions prior to macOS Mojave 10.14. |
| CVE-2018-4352 | 2019-04-03 | A consistency issue existed in the handling of application snapshots. The issue was addressed with improved handling of notes deletions. This issue affected versions prior to iOS 12. |
| CVE-2018-4353 | 2019-04-03 | A configuration issue was addressed with additional restrictions. This issue affected versions prior to macOS Mojave 10.14. |
| CVE-2018-4354 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. |
| CVE-2018-4355 | 2019-04-03 | A configuration issue was addressed with additional restrictions. This issue affected versions prior to iOS 12, macOS Mojave 10.14. |
| CVE-2018-4356 | 2019-04-03 | A permissions issue existed. This issue was addressed with improved permission validation. This issue affected versions prior to iOS 12. |
| CVE-2018-4357 | 2019-04-03 | A memory corruption issue was addressed with improved input validation. This issue affected versions prior to Xcode 10. |
| CVE-2018-4358 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for... |
| CVE-2018-4359 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for... |
| CVE-2018-4360 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7. |
| CVE-2018-4361 | 2019-04-03 | A memory consumption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for... |
| CVE-2018-4362 | 2019-04-03 | An inconsistent user interface issue was addressed with improved state management. This issue affected versions prior to Safari 11.1.2, iOS 12. |
| CVE-2018-4363 | 2019-04-03 | An input validation issue existed in the kernel. This issue was addressed with improved input validation. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5. |
| CVE-2018-4365 | 2019-04-03 | An out-of-bounds read was addressed with improved bounds checking. This issue affected versions prior to iOS 12.1. |