VDB
CVE-2018-4205
CVE-2018-4205
PUBLISHED
CVSS 6.5 MEDIUM
An issue was discovered in certain Apple products. Safari before 11.1.1 is affected. The issue involves the "Safari" component. It allows remote attackers to spoof the address bar via a crafted web site.
EPSS 0.51% · 66.6th percentile
Risk Scores
CVSS 3.0
6.5
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
EPSS Score
0.51%
66.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | macOS | |
| Apple | N/A | |
| Apple | Safari | |
| apple | safari | 0, 0, 0 |
| n/a | n/a | n/a |
Exploit Intelligence
- 1041027 (circl)
- https://support.apple.com/HT208849 (circl)
Timeline
- Jun 8, 2018 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 28, 2022 EPSS Score
- May 2, 2022 EPSS Score
- Sep 5, 2022 EPSS Score
- Nov 6, 2022 EPSS Score
- Jan 8, 2023 EPSS Score
References
- https://support.apple.com/en-gb/HT208854 advisory
- https://support.apple.com/en-gb/HT208849 advisory
- https://support.apple.com/en-gb/HT208853 advisory
- https://support.apple.com/HT208854 url
- http://www.securityfocus.com/bid/104358 url
- http://www.securitytracker.com/id/1041029 url
- 1041027 vdb
- https://support.apple.com/HT208849 url
- https://nvd.nist.gov/vuln/detail/CVE-2018-4205 advisory