CVE-2018-4278
In Safari before 11.1.2, iTunes before 12.8 for Windows, iOS before 11.4.1, tvOS before 11.4.1, iCloud for Windows before 7.6, sound fetched through audio elements may be exfiltrated cross-origin. This issue was addressed with improved audio taint tracking.
| Software | From | Fixed in |
|---|---|---|
| apple / iphone_os | - | 11.4.1 |
| apple / safari | - | 11.1.2 |
| apple / tvos | - | 11.4.1 |
| apple / icloud | - | 7.6 |
| apple / itunes | - | 12.8 |
| canonical / ubuntu_linux | 16.04 | 16.04.x |
| canonical / ubuntu_linux | 18.04 | 18.04.x |
- http://www.securitytracker.com/id/1041232
- https://exchange.xforce.ibmcloud.com/vulnerabilities/146479
- https://security.gentoo.org/glsa/201808-04
- https://support.apple.com/HT208932
- https://support.apple.com/HT208933,
- https://support.apple.com/HT208933%2C
- https://support.apple.com/HT208934,
- https://support.apple.com/HT208934%2C
- https://support.apple.com/HT208936,
- https://support.apple.com/HT208936%2C
- https://support.apple.com/HT208938,
- https://support.apple.com/HT208938%2C
- https://usn.ubuntu.com/3743-1/
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime