vulnerability

Apple Safari security update for CVE-2018-4277

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:N/I:P/A:N)	Jul 11, 2018	Jul 11, 2018	Mar 27, 2026

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:P/A:N)

Published

Jul 11, 2018

Added

Jul 11, 2018

Modified

Mar 27, 2026

Description

In iOS before 11.4.1, watchOS before 4.3.2, tvOS before 11.4.1, Safari before 11.1.1, macOS High Sierra before 10.13.6, a spoofing issue existed in the handling of URLs. This issue was addressed with improved input validation.

Solutions

apple-safari-upgrade-11_1_1apple-safari-windows-uninstall

References

CVE-2018-4277
https://attackerkb.com/topics/CVE-2018-4277
CWE-20
EUVD-EUVD-2018-16063
http://support.apple.com/kb/HT208854
https://euvd.enisa.europa.eu/vulnerability/EUVD-2018-16063

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report