KLA11409
Multiple vulnerabilities in Apple iCloud
Updated: 06/26/2019
Detect date
?
02/11/2019
Severity
?
Critical
Description

Multiple vulnerabilities were found in Apple iCloud. Malicious users can exploit these vulnerabilities to execute arbitrary code, perform cross-site scripting attack.

Below is a complete list of vulnerabilities:

  1. Multiple memory corruption vulnerabilities in SQLite can be exploited remotely to execute arbitrary code;
  2. A type confusion vulnerability in WebKit can be exploited remotely to execute arbitrary code;
  3. Multiple memory corruption vulnerabilities in WebKit can be exploited remotely to execute arbitrary code;
  4. A logic issue in WebKit can be exploited remotely to perform cross-site scripting attacks.
Affected products

Apple iCloud earlier than 7.10

Solution

Update to the latest version
Download iCloud for Windows

Original advisories

About the security content of iCloud for Windows 7.10

Impacts
?
ACE 
[?]
Related products
Apple iCloud
CVE-IDS
?
CVE-2018-203467.5Critical
CVE-2018-205050.0Unknown
CVE-2018-205060.0Unknown
CVE-2019-62158.8Critical
CVE-2019-62128.8Critical
CVE-2019-62168.8Critical
CVE-2019-62178.8Critical
CVE-2019-62268.8Critical
CVE-2019-62278.8Critical
CVE-2019-62338.8Critical
CVE-2019-62348.8Critical
CVE-2019-62296.1High