\ CVE-2018-4430 - Information Leak / Disclosure vulnerability in Apple Iphone OS | Vumetric Cyber Portal

CVE-2018-4430 - Information Leak / Disclosure vulnerability in Apple Iphone OS

Publication

2019-04-03

Last modification

2019-04-05

Summary

A lock screen issue allowed access to contacts on a locked device. This issue was addressed with improved state management. This issue affected versions prior to iOS 12.1.1.

Classification

CWE-200 - Information Leak / Disclosure

Risk level (CVSS AV:L/AC:L/Au:N/C:P/I:N/A:N)

Low

2.1

Access Vector

  • Network
  • Adjacent Network
  • Local

Access Complexity

  • Low
  • Medium
  • High

Authentication

  • None
  • Single
  • Multiple

Confident. Impact

  • Complete
  • Partial
  • None

Integrity Impact

  • Complete
  • Partial
  • None

Affected Products

Vendor Product Versions
Apple Iphone OS  10.0.3 , 1.1.2 , 3.0 , 12.0 , 1.1.1 , 10.1.1 , 3.1.3 , 11.2.5 , 11.3 , 7.1.1 , 8.3 , 9.2.1 , 4.3.5 , 4.2.1 , 9.3.2 , 4.0.1 , 7.0.4 , 8.4.1 , 11.0 , 8.0.2 , 9.3.5 , 2.0.2 , 11.2.1 , 10.0.1 , 10.3.2 , 5.1.1 , 3.2.2 , 9.1 , 2.1.1 , 2.0 , 11.3.1 , 9.3 , 7.0.6 , 1.0.2 , 11.1.2 , 3.0.1 , 10.2.1 , 6.0 , 11.4 , 5.0.1 , 9.2 , 1.1.5 , 10.2 , 3.2.1 , 9.3.1 , 11.4.1 , 10.3.3 , 5.0 , 4.3.2 , 10.1 , 9.0.1 , 11.1 , 2.1 , 6.1.5 , 11.1.1 , 8.1.2 , 4.3.3 , 4.1 , 8.0 , 3.1.2 , 1.0.1 , 2.2 , 4.3.1 , 6.0.1 , 11 , 1.0.0 , 1.1.0 , 2.0.1 , 4.0.2 , 8.1.3 , 6.1 , 2.0.0 , 12.1 , 3.2 , 8.2 , 9.0 , 7.0.3 , 7.0.5 , 6.1.4 , 10.3.1 , 4.2.8 , 9.0.2 , 4.0 , 6.0.2 , 10.3 , 3.1 , 8.0.1 , 7.1.2 , 5.1 , 11.2 , 11.0.1 , 11.2.2 , 12.0.1 , 2.2.1 , 9.3.4 , 3.1.1 , 10.0.2 , 10.0 , 7.0.2 , 1.1.3 , 11.0.3 , 8.1 , 11.2.6 , 7.1 , 7.0.1 , 4.3.0 , 11.0.2 , 4.2.5 , 1.1.4 , 6.1.2 , 6.1.3 , 9.3.3 , 6.1.6 , 7.0