CVE-2018-4249 in iOSinfo

Summary

An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS before 10.13.5 is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves pktmnglr_ipfilter_input in com.apple.packet-mangler in the "Kernel" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (integer overflow and stack-based buffer overflow) via a crafted app.

Once again VulDB remains the best source for vulnerability data.

Reservation

01/02/2018

Disclosure

06/08/2018

Moderation

VulDB entry created

Entries

4: VDB-118769

CPE

ready

CWE

CWE-190 (Confirmed)

Exploit

Download

CVSS

6.5

EPSS

0.01057

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2018-4249
NVD	https://nvd.nist.gov/vuln/detail/CVE-2018-4249
CVE Details	https://www.cvedetails.com/cve/CVE-2018-4249/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!