7.5
CVE-2018-4100
- EPSS 2.92%
- Veröffentlicht 03.04.2018 06:29:03
- Zuletzt bearbeitet 21.11.2024 04:06:45
- Quelle product-security@apple.com
- CVE-Watchlists
- Unerledigt
An issue was discovered in certain Apple products. iOS before 11.2.5 is affected. macOS before 10.13.3 is affected. watchOS before 4.2.2 is affected. The issue involves the "LinkPresentation" component. It allows remote attackers to cause a denial of service (resource consumption) via a crafted text message.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.92% | 0.852 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:P
|
CWE-400 Uncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource.
http://www.securitytracker.com/id/1040265
http://www.securitytracker.com/id/1040267
https://support.apple.com/HT208463
https://support.apple.com/HT208464
https://support.apple.com/HT208465
http://www.securityfocus.com/bid/102772