CVE-2018-4390
Apple Security Advisory 2018-10-30-1
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
An inconsistent user interface issue was addressed with improved state management. This issue is fixed in macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, and Security Update 2017-004 El Capitan, watchOS 4.3, iOS 12.1. Processing a maliciously crafted text message may lead to UI spoofing.
Se abordó un problema de interfaz de usuario inconsistente con una administración de estado mejorada.  Este problema se corrigió en macOS High Sierra versión 10.13.1, Security Update 2017-001 Sierra y Security Update 2017-004 El Capitan, watchOS versión 4.3, iOS versión 12.1. El procesamiento de un mensaje de texto diseñado maliciosamente puede conllevar a una suplantación de la interfaz de usuario
iOS 12.1 is now available and addresses code execution, cross site scripting, denial of service, and resource exhaustion vulnerabilities.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2018-01-02 CVE Reserved
- 2018-10-31 CVE Published
- 2023-07-13 EPSS Updated
- 2024-08-05 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (3)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://support.apple.com/en-us/HT208221 | 2020-10-30 | |
| https://support.apple.com/en-us/HT208696 | 2020-10-30 | |
| https://support.apple.com/en-us/HT209192 | 2020-10-30 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Apple Search vendor "Apple" | Iphone Os Search vendor "Apple" for product "Iphone Os" | < 12.1 Search vendor "Apple" for product "Iphone Os" and version " < 12.1" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | >= 10.13 < 10.13.1 Search vendor "Apple" for product "Mac Os X" and version " >= 10.13 < 10.13.1" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Watchos Search vendor "Apple" for product "Watchos" | < 4.3 Search vendor "Apple" for product "Watchos" and version " < 4.3" | - |
Affected
| ||||||