exploitDog

CVE-2018-4123

Опубликовано: 03 апр. 2018

Источник: nvd

CVSS3: 2.4

CVSS2: 2.1

EPSS Низкий

Описание

An issue was discovered in certain Apple products. iOS before 11.3 is affected. The issue involves alarm and timer handling in the "Clock" component. It allows physically proximate attackers to discover the iTunes e-mail address.

Ссылки

http://www.securityfocus.com/bid/103578
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1040604
Third Party Advisory
VDB Entry
https://support.apple.com/HT208693
Vendor Advisory
http://www.securityfocus.com/bid/103578
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1040604
Third Party Advisory
VDB Entry
https://support.apple.com/HT208693
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*

Версия до 11.3 (исключая)

EPSS

Процентиль: 23%

0.00075

Низкий

2.4 Low

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-m429-94mc-g26p

CVSS3: 2.4

github

больше 3 лет назад

An issue was discovered in certain Apple products. iOS before 11.3 is affected. The issue involves alarm and timer handling in the "Clock" component. It allows physically proximate attackers to discover the iTunes e-mail address.

EPSS

Процентиль: 23%

0.00075

Низкий

2.4 Low

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-200