Cheesecakeufo

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 11.4.1 **Description** A logic issue existed in the handling of call URLs, which was addressed with improved state management. **Recommendations** For iOS versions prior to 11.4.1, update to iOS 11.4.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 11.4.1 macOS High Sierra versions prior to 10.13.6 tvOS versions prior to 11.4.1 watchOS versions prior to 4.3.2 iTunes for Windows versions prior to 12.8 iCloud for Windows versions prior to 7.6 **Description** A memory corruption issue was addressed with improved input validation. **Recommendations** For iOS versions prior to 11.4.1, update to iOS 11.4.1 or later. For macOS High Sierra versions prior to 10.13.6, update to macOS High Sierra 10.13.6 or later. For tvOS versions prior to 11.4.1, update to tvOS 11.4.1 or later. For watchOS versions prior to 4.3.2, update to watchOS 4.3.2 or later. For iTunes for Windows versions prior to 12.8, update to iTunes 12.8 or later. For iCloud for Windows versions prior to 7.6, update to iCloud for Windows 7.6 or later.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 11.4 macOS versions prior to 10.13.5 tvOS versions prior to 11.4 watchOS versions prior to 4.3.1 **Description** The issue involves the Security component and allows local users to bypass intended restrictions on the reading of a persistent account identifier. **Recommendations** For iOS versions prior to 11.4, update to version 11.4 or later. For macOS versions prior to 10.13.5, update to version 10.13.5 or later. For tvOS versions prior to 11.4, update to version 11.4 or later. For watchOS versions prior to 4.3.1, update to version 4.3.1 or later.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 11.4 macOS versions prior to 10.13.5 iCloud versions prior to 7.5 on Windows iTunes versions prior to 12.7.5 on Windows watchOS versions prior to 4.3.1 **Description** The issue involves the Security component and allows local users to bypass intended restrictions on the reading of sensitive user information. **Recommendations** For iOS versions prior to 11.4, update to version 11.4 or later. For macOS versions prior to 10.13.5, update to version 10.13.5 or later. For iCloud versions prior to 7.5 on Windows, update to version 7.5 or later. For iTunes versions prior to 12.7.5 on Windows, update to version 12.7.5 or later. For watchOS versions prior to 4.3.1, update to version 4.3.1 or later.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 11.4 macOS versions prior to 10.13.5 iCloud versions prior to 7.5 on Windows iTunes versions prior to 12.7.5 on Windows tvOS versions prior to 11.4 watchOS versions prior to 4.3.1 **Description** The issue involves the Security component and allows local users to bypass intended restrictions on the reading of a persistent device identifier. **Recommendations** For iOS versions prior to 11.4, update to version 11.4 or later. For macOS versions prior to 10.13.5, update to version 10.13.5 or later. For iCloud versions prior to 7.5 on Windows, update to version 7.5 or later. For iTunes versions prior to 12.7.5 on Windows, update to version 12.7.5 or later. For tvOS versions prior to 11.4, update to version 11.4 or later. For watchOS versions prior to 4.3.1, update to version 4.3.1 or later.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 11.4 **Description** The issue involves the `Bluetooth` component and allows attackers to gain privileges or cause a denial of service via a crafted app, resulting in a buffer overflow. **Recommendations** For iOS versions prior to 11.4, update to version 11.4 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 11.2.5 macOS versions prior to 10.13.3 watchOS versions prior to 4.2.2 **Description** The issue involves the `LinkPresentation` component and allows remote attackers to cause a denial of service via a crafted text message, resulting in resource consumption. **Recommendations** For iOS versions prior to 11.2.5, update to version 11.2.5 or later. For macOS versions prior to 10.13.3, update to version 10.13.3 or later. For watchOS versions prior to 4.2.2, update to version 4.2.2 or later.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 11.3 macOS versions prior to 10.13.4 iCloud versions prior to 7.4 on Windows iTunes versions prior to 12.7.4 on Windows tvOS versions prior to 11.3 watchOS versions prior to 4.3 **Description** The issue involves the Security component and allows attackers to execute arbitrary code in a privileged context via a crafted app. This is achieved through a buffer overflow. **Recommendations** For iOS versions prior to 11.3, update to version 11.3 or later. For macOS versions prior to 10.13.4, update to version 10.13.4 or later. For iCloud versions prior to 7.4 on Windows, update to version 7.4 or later. For iTunes versions prior to 12.7.4 on Windows, update to version 12.7.4 or later. For tvOS versions prior to 11.3, update to version 11.3 or later. For watchOS versions prior to 4.3, update to version 4.3 or later.