7.5

CVE-2018-4185

In iOS before 11.3, tvOS before 11.3, watchOS before 4.3, and macOS before High Sierra 10.13.4, an information disclosure issue existed in the transition of program state. This issue was addressed with improved state handling.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AppleiPhone OS Version < 11.3
ApplemacOS X Version < 10.13.4
AppletvOS Version < 11.3
ApplewatchOS Version < 4.3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.95% 0.854
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 3.9 3.6
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:P/I:N/A:N
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

https://support.apple.com/HT208692
Vendor Advisory
https://support.apple.com/HT208693
Vendor Advisory
https://support.apple.com/HT208698
Vendor Advisory
https://support.apple.com/HT208696
Vendor Advisory