Apple iOS up to 11.3.1 Siri access control

entryeditHistoryDiffjsonxmlCTI

A vulnerability classified as critical has been found in Apple iOS up to 11.3.1 (Smartphone Operating System). Affected is some unknown processing of the component Siri. Upgrading to version 11.4 eliminates this vulnerability. A possible mitigation has been published immediately after the disclosure of the vulnerability.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
794655102/13/2020VulD...cve_assigned1514851200mitre.org02/13/2020accepted100
794654302/13/2020VulD...confirm_urlhttps://support.apple.com/HT208848support.apple.com02/13/2020accepted100
794649902/13/2020VulD...discoverydate152755200002/13/2020accepted100
794656106/03/2018VulD...cvss3_nvd_basescore2.4nist.gov06/03/2018accepted90
794656006/03/2018VulD...cvss3_vuldb_rcC06/03/2018accepted90
794655906/03/2018VulD...cvss3_vuldb_rlO06/03/2018accepted90
794655806/03/2018VulD...cvss3_vuldb_eX06/03/2018accepted90
794655706/03/2018VulD...cvss2_vuldb_rcC06/03/2018accepted90
794655606/03/2018VulD...cvss2_vuldb_rlOF06/03/2018accepted90
794655506/03/2018VulD...cvss2_vuldb_eND06/03/2018accepted90
794655406/03/2018VulD...seealso118648 118652 118657 118659 118660 118661 118662 118663 118664 118666 118667 118668 118669 118670 118672 118675 118676 118677 118678 118679 118680 118681 118682 118683 118684 118685 118686 118687 118689 11869106/03/2018accepted100
794655306/03/2018VulD...cve_nvd_summaryAn issue was discovered in certain Apple products. iOS before 11.4 is affected. The issue involves the "Siri" component. It allows physically proximate attackers to bypass the lock-screen protection mechanism and enable Siri.mitre.org06/03/2018accepted100
794655206/03/2018VulD...cve_nvd_published1528408800mitre.org06/03/2018accepted100
794655006/03/2018VulD...cveCVE-2018-4238mitre.org06/03/2018accepted100
794654906/03/2018VulD...upgrade_version11.406/03/2018accepted100
794654806/03/2018VulD...date1527552000 (05/29/2018)06/03/2018accepted100
794654706/03/2018VulD...nameUpgrade06/03/2018accepted100
794654606/03/2018VulD...price_trend+see documentation06/03/2018accepted100
794654506/03/2018VulD...price_0day$5k-$25ksee documentation06/03/2018accepted100
794654406/03/2018VulD...disputed006/03/2018accepted100

Do you want to use VulDB in your project?

Use the official API to access entries easily!