Multiple vulnerabilities in Apple iCloud
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 16 |
| CVE-ID | CVE-2018-4224 CVE-2018-4225 CVE-2018-4226 CVE-2018-4232 CVE-2018-4192 CVE-2018-4214 CVE-2018-4204 CVE-2018-4246 CVE-2018-4200 CVE-2018-4201 CVE-2018-4218 CVE-2018-4233 CVE-2018-4188 CVE-2018-4190 CVE-2018-4199 CVE-2018-4222 |
| CWE-ID | CWE-200 CWE-264 CWE-20 CWE-362 CWE-119 CWE-843 CWE-451 CWE-120 CWE-125 |
| Exploitation vector | Network |
| Public exploit | Public exploit code for vulnerability #12 is available. |
| Vulnerable software |
iCloud for Windows Client/Desktop applications / Other client software |
| Vendor | Apple Inc. |
Security Bulletin
This security bulletin contains information about 16 vulnerabilities.
1) Information disclosure
EUVDB-ID: #VU13170
Risk: Low
CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2018-4224
CWE-ID:
CWE-200 - Information exposure
Exploit availability: No
DescriptionThe vulnerability allows a local attacker to obtain potentially sensitive information on the target system.
The vulnerability exists due to a state management error in the Security component. A local attacker can read a persistent account identifier.
MitigationUpdate to version 7.5.
Vulnerable software versionsiCloud for Windows: 7.0 - 7.2
CPE2.3- cpe:2.3:a:apple:icloud_for_windows:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.2:*:*:*:*:*:*:*
https://support.apple.com/en-us/HT208853
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Security restrictions bypass
EUVDB-ID: #VU13173
Risk: Low
CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2018-4225
CWE-ID:
CWE-264 - Permissions, Privileges, and Access Controls
Exploit availability: No
DescriptionThe vulnerability allows a local attacker to bypass security restrictions on the target system.
The vulnerability exists due to a state management error in the Security component. A local attacker can bypass security restrictions and modify the state of the Keychain.
MitigationUpdate to version 7.5.
Vulnerable software versionsiCloud for Windows: 7.0 - 7.2
CPE2.3- cpe:2.3:a:apple:icloud_for_windows:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.2:*:*:*:*:*:*:*
https://support.apple.com/en-us/HT208853
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Information disclosure
EUVDB-ID: #VU13174
Risk: Low
CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2018-4226
CWE-ID:
CWE-200 - Information exposure
Exploit availability: No
DescriptionThe vulnerability allows a local attacker to obtain potentially sensitive information on the target system.
The vulnerability exists due to a state management error in the Security component. A local attacker can view sensitive user information.
MitigationUpdate to version 7.5.
Vulnerable software versionsiCloud for Windows: 7.0 - 7.2
CPE2.3- cpe:2.3:a:apple:icloud_for_windows:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.2:*:*:*:*:*:*:*
https://support.apple.com/en-us/HT208853
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Improper input validation
EUVDB-ID: #VU13143
Risk: Low
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2018-4232
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to bypass security restrictions on the target system.
The vulnerability exists due to insufficient validation of user-supplied input. A remote unauthenticated attacker can trick the victim into visiting a specially crafted website, bypass security restrictions and cause cookies to be overwritten.
MitigationUpdate to version 7.5.
Vulnerable software versionsiCloud for Windows: 7.0 - 7.2
CPE2.3- cpe:2.3:a:apple:icloud_for_windows:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.2:*:*:*:*:*:*:*
https://support.apple.com/en-us/HT208853
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
5) Race condition
EUVDB-ID: #VU13134
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2018-4192
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to race condition in the WebKit component when handling malicious input. A remote unauthenticated attacker can trick the victim into visiting a specially crafted website and execute arbitrary code with elevated privileges.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate to version 7.5.
Vulnerable software versionsiCloud for Windows: 7.0 - 7.2
CPE2.3- cpe:2.3:a:apple:icloud_for_windows:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.2:*:*:*:*:*:*:*
https://support.apple.com/en-us/HT208853
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
6) Memory corruption
EUVDB-ID: #VU13135
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2018-4214
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to boundary error in the WebKit component when handling malicious input. A remote unauthenticated attacker can trick the victim into loading a specially crafted content, trigger a memory corruption and execute arbitrary code with elevated privileges.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate to version 7.5.
Vulnerable software versionsiCloud for Windows: 7.0 - 7.2
CPE2.3- cpe:2.3:a:apple:icloud_for_windows:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.2:*:*:*:*:*:*:*
https://support.apple.com/en-us/HT208853
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
7) Memory corruption
EUVDB-ID: #VU12146
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2018-4204
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The weakness exists due to boundary error in the WebKit component when handling malicious input. A remote attacker can trick the victim into loading a specially crafted web content, trigger memory corruption and execute arbitrary code with elevated privileges.
Update to version 7.5.
Vulnerable software versionsiCloud for Windows: 7.0 - 7.2
CPE2.3- cpe:2.3:a:apple:icloud_for_windows:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.2:*:*:*:*:*:*:*
https://support.apple.com/en-us/HT208853
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
8) Type confusion
EUVDB-ID: #VU13133
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2018-4246
CWE-ID:
CWE-843 - Type confusion
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to type confusion in the WebKit component when handling malicious input. A remote unauthenticated attacker can trick the victim into visiting a specially crafted website, trigger memory corruption and execute arbitrary code with elevated privileges.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate to version 7.5.
Vulnerable software versionsiCloud for Windows: 7.0 - 7.2
CPE2.3- cpe:2.3:a:apple:icloud_for_windows:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.2:*:*:*:*:*:*:*
https://support.apple.com/en-us/HT208853
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
9) Memory corruption
EUVDB-ID: #VU12145
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2018-4200
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The weakness exists due to boundary error in the WebKit component when handling malicious input. A remote attacker can trick the victim into loading a specially crafted web content, trigger memory corruption and execute arbitrary code with elevated privileges.
Update to version 7.5.
Vulnerable software versionsiCloud for Windows: 7.0 - 7.2
CPE2.3- cpe:2.3:a:apple:icloud_for_windows:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.2:*:*:*:*:*:*:*
https://support.apple.com/en-us/HT208853
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
10) Memory corruption
EUVDB-ID: #VU13136
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2018-4201
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to boundary error in the WebKit component when handling malicious input. A remote unauthenticated attacker can trick the victim into loading a specially crafted content, trigger a memory corruption and execute arbitrary code with elevated privileges.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate to version 7.5.
Vulnerable software versionsiCloud for Windows: 7.0 - 7.2
CPE2.3- cpe:2.3:a:apple:icloud_for_windows:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.2:*:*:*:*:*:*:*
https://support.apple.com/en-us/HT208853
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
11) Memory corruption
EUVDB-ID: #VU13137
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2018-4218
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to boundary error in the WebKit component when handling malicious input. A remote unauthenticated attacker can trick the victim into loading a specially crafted content, trigger a memory corruption and execute arbitrary code with elevated privileges.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate to version 7.5.
Vulnerable software versionsiCloud for Windows: 7.0 - 7.2
CPE2.3- cpe:2.3:a:apple:icloud_for_windows:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.2:*:*:*:*:*:*:*
https://support.apple.com/en-us/HT208853
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
12) Memory corruption
EUVDB-ID: #VU13138
Risk: High
CVSSv4.0: 8.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Amber]
CVE-ID: CVE-2018-4233
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: Yes
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to boundary error in the WebKit component when handling malicious input. A remote unauthenticated attacker can trick the victim into loading a specially crafted content, trigger a memory corruption and execute arbitrary code with elevated privileges.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate to version 7.5.
Vulnerable software versionsiCloud for Windows: 7.0 - 7.2
CPE2.3- cpe:2.3:a:apple:icloud_for_windows:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.2:*:*:*:*:*:*:*
https://support.apple.com/en-us/HT208853
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, a fully functional exploit for this vulnerability is available.
13) Spoofing attack
EUVDB-ID: #VU13142
Risk: Low
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2018-4188
CWE-ID:
CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to conduct spoofing attack on the target system.
The vulnerability exists due to a flaw in the WebKit component. A remote unauthenticated attacker can trick the victim into visiting a specially crafted website and spoof the address bar.
MitigationUpdate to version 7.5.
Vulnerable software versionsiCloud for Windows: 7.0 - 7.2
CPE2.3- cpe:2.3:a:apple:icloud_for_windows:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.2:*:*:*:*:*:*:*
https://support.apple.com/en-us/HT208853
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
14) Information disclosure
EUVDB-ID: #VU13144
Risk: Low
CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2018-4190
CWE-ID:
CWE-200 - Information exposure
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to obtain potentially sensitive information on the target system.
The vulnerability exists due to a flaw in the WebKit component. A remote unauthenticated attacker can trick the victim into loading specially crafted CSS mask images and gain access to the target user's credentials.
MitigationUpdate to version 7.5.
Vulnerable software versionsiCloud for Windows: 7.0 - 7.2
CPE2.3- cpe:2.3:a:apple:icloud_for_windows:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.2:*:*:*:*:*:*:*
https://support.apple.com/en-us/HT208853
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
15) Buffer overflow
EUVDB-ID: #VU13139
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2018-4199
CWE-ID:
CWE-120 - Buffer overflow
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to buffer overflow in the WebKit component when handling malicious input. A remote unauthenticated attacker can trick the victim into loading a specially crafted content, trigger a memory corruption and execute arbitrary code with elevated privileges.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate to version 7.5.
Vulnerable software versionsiCloud for Windows: 7.0 - 7.2
CPE2.3- cpe:2.3:a:apple:icloud_for_windows:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.2:*:*:*:*:*:*:*
https://support.apple.com/en-us/HT208853
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
16) Out-of-bounds read
EUVDB-ID: #VU13145
Risk: Low
CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2018-4222
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to cause DoS condition on the target system.
The vulnerability exists due to out-of-bounds read error in WebKit. A remote unauthenticated attacker can trick the victim into loading a specially crafted content, trigger memory corruption and cause the service to crash.
Update to version 7.5.
Vulnerable software versionsiCloud for Windows: 7.0 - 7.2
CPE2.3- cpe:2.3:a:apple:icloud_for_windows:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:icloud_for_windows:7.2:*:*:*:*:*:*:*
https://support.apple.com/en-us/HT208853
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
