CVE List - 2019 / April
Showing 201 - 300 of 1531 CVEs for April 2019 (Page 3 of 16)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2018-4366 | 2019-04-03 | A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12.1. |
| CVE-2018-4367 | 2019-04-03 | A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12.1. |
| CVE-2018-4368 | 2019-04-03 | A denial of service issue was addressed with improved validation. This issue affected versions prior to iOS 12.1, macOS Mojave 10.14.1, tvOS 12.1, watchOS 5.1. |
| CVE-2018-4369 | 2019-04-03 | A logic issue was addressed with improved state management. This issue affected versions prior to iOS 12.1, macOS Mojave 10.14.1, tvOS 12.1, watchOS 5.1. |
| CVE-2018-4371 | 2019-04-03 | An out-of-bounds read was addressed with improved input validation. This issue affected versions prior to iOS 12.1, macOS Mojave 10.14.1, tvOS 12.1, watchOS 5.1. |
| CVE-2018-4372 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. |
| CVE-2018-4373 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. |
| CVE-2018-4374 | 2019-04-03 | A logic issue was addressed with improved validation. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. |
| CVE-2018-4375 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. |
| CVE-2018-4376 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. |
| CVE-2018-4377 | 2019-04-03 | A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud... |
| CVE-2018-4378 | 2019-04-03 | A memory corruption issue was addressed with improved validation. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. |
| CVE-2018-4382 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. |
| CVE-2018-4383 | 2019-04-03 | A memory corruption issue was addressed with improved state management. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. |
| CVE-2018-4384 | 2019-04-03 | A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12.1, watchOS 5.1. |
| CVE-2018-4385 | 2019-04-03 | A logic issue was addressed with improved state management. This issue affected versions prior to iOS 12.1. |
| CVE-2018-4386 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. |
| CVE-2018-4387 | 2019-04-03 | A lock screen issue allowed access to photos via Reply With Message on a locked device. This issue was addressed with improved state management. This issue affected versions prior to... |
| CVE-2018-4388 | 2019-04-03 | A lock screen issue allowed access to the share function on a locked device. This issue was addressed by restricting options offered on a locked device. This issue affected versions... |
| CVE-2018-4389 | 2019-04-03 | An inconsistent user interface issue was addressed with improved state management. This issue affected versions prior to macOS Mojave 10.14.1. |
| CVE-2018-4392 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. |
| CVE-2018-4393 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to macOS Mojave 10.14. |
| CVE-2018-4394 | 2019-04-03 | A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12.1, macOS Mojave 10.14.1, tvOS 12.1, watchOS 5.1, iTunes 12.9.1. |
| CVE-2018-4395 | 2019-04-03 | This issue was addressed with improved checks. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. |
| CVE-2018-4396 | 2019-04-03 | A validation issue was addressed with improved input sanitization. This issue affected versions prior to macOS Mojave 10.14. |
| CVE-2018-4398 | 2019-04-03 | An issue existed in the method for determining prime numbers. This issue was addressed by using pseudorandom bases for testing of primes. This issue affected versions prior to iOS 12.1,... |
| CVE-2018-4399 | 2019-04-03 | An access issue existed with privileged API calls. This issue was addressed with additional restrictions. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. |
| CVE-2018-4400 | 2019-04-03 | A validation issue was addressed with improved logic. This issue affected versions prior to iOS 12.1, macOS Mojave 10.14.1, watchOS 5.1. |
| CVE-2018-4401 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. |
| CVE-2018-4402 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to macOS Mojave 10.14.1. |
| CVE-2018-4403 | 2019-04-03 | This issue was addressed by removing additional entitlements. This issue affected versions prior to macOS Mojave 10.14.1. |
| CVE-2018-4406 | 2019-04-03 | A denial of service issue was addressed with improved validation. This issue affected versions prior to macOS Mojave 10.14. |
| CVE-2018-4408 | 2019-04-03 | A memory corruption issue was addressed with improved input validation This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. |
| CVE-2018-4409 | 2019-04-03 | A resource exhaustion issue was addressed with improved input validation. This issue affected versions prior to iOS 12.1, tvOS 12.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. |
| CVE-2018-4410 | 2019-04-03 | A memory corruption issue was addressed with improved input validation. This issue affected versions prior to macOS Mojave 10.14.1. |
| CVE-2018-4411 | 2019-04-03 | A memory corruption issue was addressed with improved input validation. This issue affected versions prior to macOS Mojave 10.14. |
| CVE-2018-4412 | 2019-04-03 | A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5, iTunes 12.9 for Windows, iCloud... |
| CVE-2018-4413 | 2019-04-03 | A memory initialization issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1, macOS Mojave 10.14.1, tvOS 12.1, watchOS 5.1. |
| CVE-2018-4414 | 2019-04-03 | A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5, iTunes 12.9 for Windows, iCloud... |
| CVE-2018-4415 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to macOS Mojave 10.14.1. |
| CVE-2018-4416 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8. |
| CVE-2018-4417 | 2019-04-03 | A validation issue was addressed with improved input sanitization. This issue affected versions prior to macOS Mojave 10.14. |
| CVE-2018-4418 | 2019-04-03 | A validation issue was addressed with improved input sanitization. This issue affected versions prior to macOS Mojave 10.14. |
| CVE-2018-4419 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1, macOS Mojave 10.14.1, tvOS 12.1, watchOS 5.1. |
| CVE-2018-4420 | 2019-04-03 | A memory corruption issue was addressed by removing the vulnerable code. This issue affected versions prior to iOS 12.1, macOS Mojave 10.14.1, tvOS 12.1, watchOS 5.1. |
| CVE-2018-4421 | 2019-04-03 | A memory initialization issue was addressed with improved memory handling. This issue affected versions prior to macOS Mojave 10.14.1. |
| CVE-2018-4422 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to macOS Mojave 10.14.1. |
| CVE-2018-4423 | 2019-04-03 | A logic issue was addressed with improved validation. This issue affected versions prior to macOS Mojave 10.14.1. |
| CVE-2018-4424 | 2019-04-03 | A buffer overflow was addressed with improved size validation. This issue affected versions prior to macOS Mojave 10.14.1. |
| CVE-2018-4425 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. |
| CVE-2018-4426 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. |
| CVE-2018-4429 | 2019-04-03 | A spoofing issue existed in the handling of URLs. This issue was addressed with improved input validation. This issue affected versions prior to iOS 12.1.1, watchOS 5.1.2. |
| CVE-2018-4430 | 2019-04-03 | A lock screen issue allowed access to contacts on a locked device. This issue was addressed with improved state management. This issue affected versions prior to iOS 12.1.1. |
| CVE-2018-4431 | 2019-04-03 | A memory initialization issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2. |
| CVE-2018-4434 | 2019-04-03 | An out-of-bounds read was addressed with improved input validation. This issue affected versions prior to macOS Mojave 10.14.2. |
| CVE-2018-4435 | 2019-04-03 | A logic issue was addressed with improved restrictions. This issue affected versions prior to iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2. |
| CVE-2018-4436 | 2019-04-03 | A certificate validation issue existed in configuration profiles. This was addressed with additional checks. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2. |
| CVE-2018-4379 | 2019-04-03 | A lock screen issue allowed access to the share function on a locked device. This issue was addressed by restricting options offered on a locked device. This issue affected versions... |
| CVE-2018-4380 | 2019-04-03 | A lock screen issue allowed access to photos and contacts on a locked device. This issue was addressed by restricting options offered on a locked device. This issue affected versions... |
| CVE-2018-4397 | 2019-04-03 | Analytics data was sent using HTTP rather than HTTPS. This was addressed by sending analytics data using HTTPS. This issue affected versions prior to Apple Support 2.4 for iOS. |
| CVE-2018-4437 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for... |
| CVE-2018-4438 | 2019-04-03 | A logic issue existed resulting in memory corruption. This was addressed with improved state management. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes... |
| CVE-2018-4439 | 2019-04-03 | A logic issue was addressed with improved validation. This issue affected versions prior to iOS 12.1.1, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9. |
| CVE-2018-4440 | 2019-04-03 | A logic issue was addressed with improved state management. This issue affected versions prior to iOS 12.1.1, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9. |
| CVE-2018-4441 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for... |
| CVE-2018-4442 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for... |
| CVE-2018-4443 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for... |
| CVE-2018-4445 | 2019-04-03 | "Clear History and Website Data" did not clear the history. The issue was addressed with improved data deletion. This issue affected versions prior to iOS 12.1.1, Safari 12.0.2. |
| CVE-2018-4446 | 2019-04-03 | This issue was addressed with improved entitlements. This issue affected versions prior to iOS 12.1.1. |
| CVE-2018-4447 | 2019-04-03 | A memory corruption issue was addressed with improved state management. This issue affected versions prior to iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2. |
| CVE-2018-4449 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to macOS Mojave 10.14.2. |
| CVE-2018-4450 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to macOS Mojave 10.14.2. |
| CVE-2018-4456 | 2019-04-03 | A memory corruption issue was addressed with improved input validation. This issue affected versions prior to macOS High Sierra 10.13.6, macOS Mojave 10.14. |
| CVE-2018-4460 | 2019-04-03 | A denial of service issue was addressed by removing the vulnerable code. This issue affected versions prior to iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2. |
| CVE-2018-4461 | 2019-04-03 | A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2. |
| CVE-2018-4462 | 2019-04-03 | A validation issue was addressed with improved input sanitization. This issue affected versions prior to macOS Mojave 10.14.2. |
| CVE-2018-4463 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to macOS Mojave 10.14.2. |
| CVE-2018-4464 | 2019-04-03 | Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for... |
| CVE-2018-4465 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2. |
| CVE-2018-4470 | 2019-04-03 | A privacy issue in the handling of Open Directory records was addressed with improved indexing. This issue affected versions prior to macOS High Sierra 10.13.6. |
| CVE-2017-13911 | 2019-04-03 | A configuration issue was addressed with additional restrictions. This issue affected versions prior to macOS X El Capitan 10.11.6 Security Update 2018-002, macOS Sierra 10.12.6 Security Update 2018-002, macOS High... |
| CVE-2018-4427 | 2019-04-03 | A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to: iOS 12.1, watchOS 5.1.2, tvOS 12.1.1, macOS High Sierra 10.13.6 Security Update 2018-003 High... |
| CVE-2018-20506 | 2019-04-03 | SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an integer overflow (and resultant buffer overflow) for FTS3 queries in a "merge" operation that occurs after crafted changes to... |
| CVE-2018-20505 | 2019-04-03 | SQLite 3.25.2, when queries are run on a table with a malformed PRIMARY KEY, allows remote attackers to cause a denial of service (application crash) by leveraging the ability to... |
| CVE-2018-4300 | 2019-04-03 | The session cookie generated by the CUPS web interface was easy to guess on Linux, allowing unauthorized scripted access to the web interface when the web interface is enabled. This... |
| CVE-2019-10240 | 2019-04-03 | Eclipse hawkBit versions prior to 0.3.0M2 resolved Maven build artifacts for the Vaadin based UI over HTTP instead of HTTPS. Any of these dependent artifacts could have been maliciously compromised... |
| CVE-2015-5606 | 2019-04-03 | Vordel XML Gateway (acquired by Axway) version 7.2.2 could allow remote attackers to cause a denial of service via a specially crafted request. |
| CVE-2015-5463 | 2019-04-03 | AxiomSL's Axiom java applet module (used for editing uploaded Excel files and associated Java RMI services) 9.5.3 and earlier allows remote attackers to (1) access data of other basic users... |
| CVE-2015-5462 | 2019-04-03 | AxiomSL's Axiom Google Web Toolkit module 9.5.3 and earlier allows remote attackers to inject HTML into the scoping dashboard features. |
| CVE-2015-5384 | 2019-04-03 | AxiomSL's Axiom Google Web Toolkit module 9.5.3 and earlier is vulnerable to a Session Fixation attack. |
| CVE-2019-3886 | 2019-04-04 | An incorrect permissions check was discovered in libvirt 4.8.0 and above. The readonly permission was allowed to invoke APIs depending on the guest agent, which could lead to potentially disclosing... |
| CVE-2019-10842 | 2019-04-04 | Arbitrary code execution (via backdoor code) was discovered in bootstrap-sass 3.2.0.3, when downloaded from rubygems.org. An unauthenticated attacker can craft the ___cfduid cookie value with base64 arbitrary code to be... |
| CVE-2019-10844 | 2019-04-04 | nbla/logger.cpp in libnnabla.a in Sony Neural Network Libraries (aka nnabla) through v1.0.14 relies on the HOME environment variable, which might be untrusted. |
| CVE-2014-3603 | 2019-04-04 | The (1) HttpResource and (2) FileBackedHttpResource implementations in Shibboleth Identity Provider (IdP) before 2.4.1 and OpenSAML Java 2.6.2 do not verify that the server hostname matches a domain name in... |
| CVE-2018-19981 | 2019-04-04 | Amazon AWS SDK <=2.8.5 for Android uses Android SharedPreferences to store plain text AWS STS Temporary Credentials retrieved by AWS Cognito Identity Service. An attacker can use these credentials to... |
| CVE-2018-10242 | 2019-04-04 | Suricata version 4.0.4 incorrectly handles the parsing of the SSH banner. A malformed SSH banner can cause the parsing code to read beyond the allocated data because SSHParseBanner in app-layer-ssh.c... |
| CVE-2018-10244 | 2019-04-04 | Suricata version 4.0.4 incorrectly handles the parsing of an EtherNet/IP PDU. A malformed PDU can cause the parsing code to read beyond the allocated data because DecodeENIPPDU in app-layer-enip-commmon.c has... |
| CVE-2018-11830 | 2019-04-04 | Improper input validation in QCPE create function may lead to integer overflow in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU,... |
| CVE-2018-11958 | 2019-04-04 | Insufficient protection of keys in keypad can lead HLOS to gain access to confidential keypad input data in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT,... |
| CVE-2018-11966 | 2019-04-04 | Undefined behavior in UE while processing unknown IEI in OTA message in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MDM9150, MDM9206, MDM9607,... |