CVE-2018-4436 — Vulnetix

CVE-2018-4436 PUBLISHED CVSS 5 MEDIUM

A certificate validation issue existed in configuration profiles. This was addressed with additional checks. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2.

EPSS 0.12% · 30.4th percentile

Risk Scores

CVSS 2.0

EPSS Score

0.12%

30.4th percentile

Affected Products

Vendor	Product	Versions
apple	tvos	0
n/a	iOS, tvOS, watchOS	Versions prior to: iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2
apple	watchos	0
apple	iphone_os	0

Exploit Intelligence

https://support.apple.com/kb/HT209343 (circl)
https://support.apple.com/kb/HT209342 (circl)
https://support.apple.com/kb/HT209340 (circl)

Timeline

Dec 6, 2018 CVE Published
Dec 7, 2018 CVE Updated
Apr 14, 2021 EPSS Score
Jun 23, 2021 EPSS Score
Aug 24, 2021 EPSS Score
Oct 26, 2021 EPSS Score
Dec 27, 2021 EPSS Score
Feb 4, 2022 EPSS Score
Feb 28, 2022 EPSS Score
May 2, 2022 EPSS Score
Sep 5, 2022 EPSS Score
Nov 6, 2022 EPSS Score

References

https://support.apple.com/fr-fr/HT209342 advisory
https://support.apple.com/fr-fr/HT209347 advisory
https://support.apple.com/fr-fr/HT209344 advisory
https://support.apple.com/fr-fr/HT209345 advisory
https://support.apple.com/fr-fr/HT209340 advisory
https://support.apple.com/fr-fr/HT209343 advisory
https://support.apple.com/fr-fr/HT209341 advisory
https://support.apple.com/fr-fr/HT209346 advisory
https://support.apple.com/kb/HT209343 url
https://support.apple.com/kb/HT209342 url
https://support.apple.com/kb/HT209340 url
https://nvd.nist.gov/vuln/detail/CVE-2018-4436 advisory

Open in Interactive Console →