CVE-2018-4445

Published: Apr 3, 2019Modified: Nov 21, 2024

4.3

Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Exploitability: 2.8 / Impact: 1.4

Source: NVD

Description

"Clear History and Website Data" did not clear the history. The issue was addressed with improved data deletion. This issue affected versions prior to iOS 12.1.1, Safari 12.0.2.

Affected (2)

Products: Apple: Iphone Os, Safari

Apple

2 products

Iphone Os

Safari

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Apple Iphone Os	Before 12.1.1
Apple Safari	Before 12.0.2

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (4)

https://support.apple.com/kb/HT209340

Source: product-security@apple.com

Vendor Advisory

https://support.apple.com/kb/HT209344

Source: product-security@apple.com

Vendor Advisory

https://support.apple.com/kb/HT209340

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://support.apple.com/kb/HT209344

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.