Memory Read Restriction Bypass in Apple iOS, macOS, tvOS, and watchOS Products
CVE-2018-4093

5.5MEDIUM

Key Information:

Vendor
Apple
Status
iPhone OS
Mac Os X
Apple Tv
Watch OS
Vendor
CVE Published:
3 April 2018

Summary

A vulnerability exists in multiple Apple products that allows attackers to bypass defined memory-read restrictions. This issue affects iOS, macOS, tvOS, and watchOS, where a crafted application could leverage this flaw, leading to unauthorized access to sensitive information within the affected devices. Users are advised to update their systems to the latest versions to mitigate the risk associated with this vulnerability.

References

https://support.apple.com/HT208462
x_refsource_CONFIRM
https://support.apple.com/HT208465
x_refsource_CONFIRM
http://www.securitytracker.com/id/1040265
vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.