CVE-2018-4185

Опубликовано: 11 янв. 2019

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

In iOS before 11.3, tvOS before 11.3, watchOS before 4.3, and macOS before High Sierra 10.13.4, an information disclosure issue existed in the transition of program state. This issue was addressed with improved state handling.

Ссылки

https://support.apple.com/HT208692
Vendor Advisory
https://support.apple.com/HT208693
Vendor Advisory
https://support.apple.com/HT208696
Vendor Advisory
https://support.apple.com/HT208698
Vendor Advisory
https://support.apple.com/HT208692
Vendor Advisory
https://support.apple.com/HT208693
Vendor Advisory
https://support.apple.com/HT208696
Vendor Advisory
https://support.apple.com/HT208698
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*

Версия до 11.3 (исключая)

cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*

Версия до 10.13.4 (исключая)

cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*

Версия до 11.3 (исключая)

cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*

Версия до 4.3 (исключая)

EPSS

Процентиль: 88%

0.03739

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-63w4-m2q2-xw9v