KLA11409
Multiple vulnerabilities in Apple iCloud
Обновлено: 26/06/2019
Дата обнаружения
11/02/2019
Уровень угрозы
Critical
Описание

Multiple vulnerabilities were found in Apple iCloud. Malicious users can exploit these vulnerabilities to execute arbitrary code, perform cross-site scripting attack.

Below is a complete list of vulnerabilities:

  1. Multiple memory corruption vulnerabilities in SQLite can be exploited remotely to execute arbitrary code;
  2. A type confusion vulnerability in WebKit can be exploited remotely to execute arbitrary code;
  3. Multiple memory corruption vulnerabilities in WebKit can be exploited remotely to execute arbitrary code;
  4. A logic issue in WebKit can be exploited remotely to perform cross-site scripting attacks.
Пораженные продукты

Apple iCloud earlier than 7.10

Решение

Update to the latest version
Download iCloud for Windows

Первичный источник обнаружения
About the security content of iCloud for Windows 7.10
Оказываемое влияние
?
ACE 
[?]
Связанные продукты
Apple iCloud
CVE-IDS
CVE-2018-203467.5Critical
CVE-2018-205050.0Unknown
CVE-2018-205060.0Unknown
CVE-2019-62158.8Critical
CVE-2019-62128.8Critical
CVE-2019-62168.8Critical
CVE-2019-62178.8Critical
CVE-2019-62268.8Critical
CVE-2019-62278.8Critical
CVE-2019-62338.8Critical
CVE-2019-62348.8Critical
CVE-2019-62296.1High