Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2018-4185

EPSS 3.74% · P88
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2018-4185

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
In iOS before 11.3, tvOS before 11.3, watchOS before 4.3, and macOS before High Sierra 10.13.4, an information disclosure issue existed in the transition of program state. This issue was addressed with improved state handling.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
多款Apple产品Kernel 信息泄露漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Apple iOS、tvOS、watchOS和macOS High Sierra都是美国苹果(Apple)公司的产品。Apple iOS是为移动设备所开发的一套操作系统;tvOS是一套智能电视操作系统;watchOS是一套智能手表操作系统;macOS High Sierra是为Mac计算机所开发的一套专用操作系统。Kernel是其中的一个内核组件。 多款Apple产品中的Kernel组件的程序状态转换存在信息泄露漏洞。攻击者可借助恶意的应用程序利用该漏洞确定内核内存布局。以下产品和版本受到影响:Apple
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2018-4185

#POC DescriptionSource LinkShenlong Link
1CVE-2018-4185: iOS 11.2-11.2.6 kernel pointer disclosure introduced by Apple's Meltdown mitigation.https://github.com/bazad/x18-leakPOC Details
2CVE-2018-4185: iOS 11.2-11.2.6 kernel pointer disclosure introduced by Apple's Meltdown mitigation.https://github.com/xigexbh/bazad1POC Details
3CVE-2018-4185: iOS 11.2-11.2.6 kernel pointer disclosure introduced by Apple's Meltdown mitigation.https://github.com/Giler2004/bazad1POC Details
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2018-4185

登录查看更多情报信息。

Same Patch Batch · n/a · 2019-01-11 · 52 CVEs total

CVE-2018-4210多款Apple产品WebKit 安全漏洞
CVE-2018-4404Apple iOS和macOS High Sierra libxpc 安全漏洞
CVE-2018-4330Apple iOS Core Bluetooth 安全漏洞
CVE-2018-4262多款Apple产品WebKit组件缓冲区错误漏洞
CVE-2018-4281Apple SwiftNIO 缓冲区错误漏洞
CVE-2018-4278多款Apple产品WebKit 安全特征问题漏洞
CVE-2018-4277多款Apple产品LinkPresentation 安全漏洞
CVE-2018-4298Apple macOS Sierra Remote Management 安全漏洞
CVE-2018-4213多款Apple产品WebKit 安全漏洞
CVE-2018-4212多款Apple产品WebKit 安全漏洞
CVE-2018-4217Apple macOS High Sierra Identity Services 信息泄露漏洞
CVE-2018-4209多款Apple产品WebKit 安全漏洞
CVE-2018-4208多款Apple产品WebKit 安全漏洞
CVE-2018-4207多款Apple产品WebKit 安全漏洞
CVE-2018-4194多款Apple产品CoreGraphics 缓冲区错误漏洞
CVE-2018-4189多款Apple产品Kernel 安全漏洞
CVE-2018-4186Apple Safari Safari Private Browsing 信息泄露漏洞
CVE-2018-4183Apple macOS High Sierra CUPS 安全漏洞
CVE-2018-4182Apple macOS High Sierra CUPS 安全漏洞
CVE-2018-4181Apple macOS High Sierra CUPS 安全漏洞

Showing top 20 of 52 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2018-4185

No comments yet

Leave a comment