CVE-2018-4206

Public Exploit

Description

An issue was discovered in certain Apple products. iOS before 11.3.1 is affected. macOS before 10.13.4 Security Update 2018-001 is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "Crash Reporter" component. It allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted app that replaces a privileged port name.

References

Link	Tags
https://support.apple.com/HT208850	vendor advisory
https://support.apple.com/HT208851	vendor advisory
http://www.securitytracker.com/id/1040744	vdb entry third party advisory
https://bugs.chromium.org/p/project-zero/issues/detail?id=1529	third party advisory exploit
https://support.apple.com/HT208743	vendor advisory
http://www.securityfocus.com/bid/103957	vdb entry third party advisory
https://support.apple.com/HT208742	vendor advisory
http://www.securityfocus.com/bid/103958	vdb entry third party advisory
https://www.exploit-db.com/exploits/44562/	exploit vdb entry third party advisory

Frequently Asked Questions

What is the severity of CVE-2018-4206?: CVE-2018-4206 has been scored as a high severity vulnerability.
How to fix CVE-2018-4206?: To fix CVE-2018-4206, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2018-4206 being actively exploited in the wild?: It is possible that CVE-2018-4206 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~11% probability that this vulnerability will be exploited by malicious actors in the next 30 days.

Description

Category

CWE-119 – Improper Restriction of Operations within the Bounds of a Memory Buffer

References

Frequently Asked Questions