Vulnetix
Try Vulnetix Request Demo
CVE-2018-4117 PUBLISHED

An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. watchOS before 4.3 is affected. The issue involves the fetch API in the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.

EPSS 0.95% · 76.3th percentile

Risk Scores

EPSS Score
0.95%
76.3th percentile

Affected Products

VendorProductVersions
Ubuntu:16.04:LTSqtwebkit-source2.3.2-0ubuntu11, 2.3.2-0ubuntu10, 0
Ubuntu:18.04:LTSwebkitgtk0, 2.4.11-3ubuntu3, 2.4.11-3ubuntu2
Ubuntu:16.04:LTSwebkit2gtk2.18.4-0ubuntu0.16.04.1, 2.18.3-0ubuntu0.16.04.1, 2.18.0-0ubuntu0.16.04.2
Ubuntu:16.04:LTSwebkitgtk2.4.10-0ubuntu1, 2.4.11-0ubuntu0.1, 2.4.9-2ubuntu2
Ubuntu:16.04:LTSqtwebkit-opensource-src5.4.2+dfsg-1ubuntu2.1, 5.5.1+dfsg-2ubuntu1, 0
Ubuntu:18.04:LTSchromium-browser61.0.3163.100-0ubuntu1.1378, 62.0.3202.62-0ubuntu0.17.10.1380, 62.0.3202.89-0ubuntu1.1386
Ubuntu:18.04:LTSqtwebkit-source2.3.2-0ubuntu13, 0
Ubuntu:18.04:LTSqtwebkit-opensource-src5.212.0~alpha2-5build2, 5.212.0~alpha2-5build4, 5.212.0~alpha2-7
Ubuntu:24.04:LTSqtwebkit-opensource-src5.212.0~alpha4-36, 0, 5.212.0~alpha4-33
Ubuntu:22.04:LTSqtwebkit-opensource-src5.212.0~alpha4-15ubuntu1, 5.212.0~alpha4-14ubuntu2, 5.212.0~alpha4-14build1
Ubuntu:16.04:LTSchromium-browser61.0.3163.100-0ubuntu0.16.04.1306, 61.0.3163.79-0ubuntu0.16.04.1300, 60.0.3112.113-0ubuntu0.16.04.1298
Ubuntu:20.04:LTSqtwebkit-opensource-src5.212.0~alpha3-3, 0, 5.212.0~alpha4-1ubuntu2

Timeline

References

Open in Interactive Console →