Lucene search

PRIOn knowledge basePRION:CVE-2018-4240

HistoryJun 08, 2018 - 6:29 p.m.

Code injection

2018-06-0818:29:00

PRIOn knowledge base

www.prio-n.com

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

5.3 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.036 Low

EPSS

Percentile

91.4%

JSON

An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS before 10.13.5 is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the “Messages” component. It allows remote attackers to cause a denial of service via a crafted message.

CPENameOperatorVersion
iphone_oslt11.4
mac_os_xlt10.13.5
tvoslt11.4
watchoslt4.3.1

Name	Operator	Version
iphone_os	lt	11.4
mac_os_x	lt	10.13.5
tvos	lt	11.4
watchos	lt	4.3.1

References

www.securitytracker.com/id/1041027

support.apple.com/HT208848

support.apple.com/HT208849

support.apple.com/HT208850

support.apple.com/HT208851

www.exploit-db.com/exploits/45391/

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

5.3 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.036 Low

EPSS

Percentile

91.4%

JSON

Related for PRION:CVE-2018-4240