Apple iOS up to 11.3.1 Siri access control

A vulnerability classified as critical has been found in Apple iOS up to 11.3.1 (Smartphone Operating System). Affected is some unknown processing of the component Siri. Upgrading to version 11.4 eliminates this vulnerability. A possible mitigation has been published immediately after the disclosure of the vulnerability.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

155

Field

source_cve_assigned1
vulnerability_cvss2_nvd_av1
vulnerability_cvss3_vuldb_s1
vulnerability_cvss3_vuldb_ui1
vulnerability_cvss3_vuldb_pr1

Commit Conf

100%60
90%7
98%1

Approve Conf

100%60
90%7
98%1
IDCommitedUserFieldChangeRemarksAcceptedReasonC
794655102/13/2020VulD...cve_assigned1514851200cve.org02/13/2020accepted
100
794654302/13/2020VulD...confirm_urlhttps://support.apple.com/HT208848support.apple.com02/13/2020accepted
100
794649902/13/2020VulD...discoverydate152755200002/13/2020accepted
100
794656106/03/2018VulD...cvss3_nvd_basescore2.4nist.gov06/03/2018accepted
90
794656006/03/2018VulD...cvss3_vuldb_rcCsee CVSS documentation06/03/2018accepted
90
794655906/03/2018VulD...cvss3_vuldb_rlOsee CVSS documentation06/03/2018accepted
90
794655806/03/2018VulD...cvss3_vuldb_eXsee CVSS documentation06/03/2018accepted
90
794655706/03/2018VulD...cvss2_vuldb_rcCsee CVSS documentation06/03/2018accepted
90
794655606/03/2018VulD...cvss2_vuldb_rlOFsee CVSS documentation06/03/2018accepted
90
794655506/03/2018VulD...cvss2_vuldb_eNDsee CVSS documentation06/03/2018accepted
90
794655406/03/2018VulD...seealso118648 118652 118657 118659 118660 118661 118662 118663 118664 118666 118667 118668 118669 118670 118672 118675 118676 118677 118678 118679 118680 118681 118682 118683 118684 118685 118686 118687 118689 11869106/03/2018accepted
100
794655306/03/2018VulD...cve_nvd_summaryAn issue was discovered in certain Apple products. iOS before 11.4 is affected. The issue involves the "Siri" component. It allows physically proximate attackers to bypass the lock-screen protection mechanism and enable Siri.cve.org06/03/2018accepted
100
794655206/03/2018VulD...cve_nvd_published1528408800cve.org06/03/2018accepted
100
794655006/03/2018VulD...cveCVE-2018-4238cve.org06/03/2018accepted
100
794654906/03/2018VulD...upgrade_version11.4see version documentation06/03/2018accepted
100
794654806/03/2018VulD...date1527552000 (05/29/2018)06/03/2018accepted
100
794654706/03/2018VulD...nameUpgrade06/03/2018accepted
100
794654606/03/2018VulD...price_trend+see exploit price documentation06/03/2018accepted
100
794654506/03/2018VulD...price_0day$5k-$25ksee exploit price documentation06/03/2018accepted
100
794654406/03/2018VulD...disputed006/03/2018accepted
100

48 more entries are not shown

Do you want to use VulDB in your project?

Use the official API to access entries easily!