OR
     *cpe:2.3:a:apple:apple_tv:*:*:*:*:*:*:*:* versions from (excluding) 11.4.1

OR
     *cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:* versions from (excluding) 11.4.1

AND
     OR
          *cpe:2.3:a:apple:icloud:*:*:*:*:*:*:*:* versions up to (excluding) 7.6
          *cpe:2.3:a:apple:itunes:*:*:*:*:*:*:*:* versions up to (excluding) 12.8
     OR
          cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*

OR
     *cpe:2.3:a:apple:apple_tv:*:*:*:*:*:*:*:* versions up to (excluding) 11.4.1
     *cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:* versions up to (excluding) 11.1.2
     *cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* versions up to (excluding) 11.4.1
     *cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:* versions up to (excluding) 4.3.2

OR
     *cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
     *cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Victim must voluntarily interact with attack mechanism

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-119

http://www.securitytracker.com/id/1041232 No Types Assigned

http://www.securitytracker.com/id/1041232 Third Party Advisory, VDB Entry

https://security.gentoo.org/glsa/201808-04 No Types Assigned

https://security.gentoo.org/glsa/201808-04 Third Party Advisory

https://support.apple.com/HT208934, No Types Assigned

https://support.apple.com/HT208934, Broken Link, Vendor Advisory

https://support.apple.com/HT208935 No Types Assigned

https://support.apple.com/HT208935 Vendor Advisory

https://support.apple.com/HT208938, No Types Assigned

https://support.apple.com/HT208938, Broken Link, Vendor Advisory

https://usn.ubuntu.com/3743-1/ No Types Assigned

https://usn.ubuntu.com/3743-1/ Third Party Advisory

http://www.securitytracker.com/id/1041232 [No Types Assigned]

https://security.gentoo.org/glsa/201808-04 [No Types Assigned]

https://usn.ubuntu.com/3743-1/ [No Types Assigned]