vulnerability

Apple iTunes security update for CVE-2018-4386

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:P/I:P/A:P)	Oct 31, 2018	Oct 31, 2018	Mar 27, 2026

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

Oct 31, 2018

Added

Oct 31, 2018

Modified

Mar 27, 2026

Description

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.

Solution

apple-itunes-upgrade-12_9_1

References

CVE-2018-4386
https://attackerkb.com/topics/CVE-2018-4386
CWE-119
EUVD-EUVD-2018-16172
http://support.apple.com/kb/HT209197
https://euvd.enisa.europa.eu/vulnerability/EUVD-2018-16172

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report