CVE-2018-4433Apple Macos vulnerability

8 documents4 sources
Severity
5.5MEDIUMNVD
EPSS
0.3%
top 46.45%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
Apple IOSApple MacosApple Tvos+3 more
Timeline
PublishedOct 27
Latest updateMay 24

Description

A configuration issue was addressed with additional restrictions. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra, watchOS 5, iOS 12, tvOS 12, macOS Mojave 10.14. A malicious application may be able to modify protected parts of the file system.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages8 packages

CVEListV5apple/macosunspecified10.14
NVDapple/mac_os_x< 10.14.4+1
CVEListV5apple/tvosunspecified12
NVDapple/tvos< 12.0
CVEListV5apple/watchosunspecified5

🔴Vulnerability Details

2
GHSA
GHSA-vwv4-wj3m-3cqg: A configuration issue was addressed with additional restrictions2022-05-24
CVEList
CVE-2018-4433: A configuration issue was addressed with additional restrictions2020-10-27

📋Vendor Advisories

5
Apple
CVE-2018-4433: macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra2019-03-25
Apple
CVE-2018-4433: macOS Mojave 10.142018-09-24
Apple
CVE-2018-4433: iOS 122018-09-17
Apple
CVE-2018-4433: tvOS 122018-09-17
Apple
CVE-2018-4433: watchOS 52018-09-17
CVE-2018-4433 — Apple Macos vulnerability | cvebase