CVE-2018-4399

MEDIUM

Description

An access issue existed with privileged API calls. This issue was addressed with additional restrictions. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5.

References

https://support.apple.com/kb/HT209106

https://support.apple.com/kb/HT209107

https://support.apple.com/kb/HT209108

https://support.apple.com/kb/HT209139

https://support.apple.com/kb/HT209193

Details

Source: MITRE

Published: 2019-04-03

Updated: 2019-04-05

Type: CWE-20

Risk Information

CVSS v2.0

Base Score: 4.3

Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 8.6

Severity: MEDIUM

CVSS v3.0

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Impact Score: 3.6

Exploitability Score: 1.8

Severity: MEDIUM