CVE-2018-4152: Race Condition
Notes. A race condition was addressed with additional validation.
Other sources
An issue was discovered in certain Apple products. macOS before 10.13.4 is affected. The issue involves the "Notes" component. A race condition allows attackers to execute arbitrary code in a privileged context via a crafted app.
Credit
Affected Software
Event History
Peer vulnerabilities
Found alongside the following vulnerabilities.
- CVE-2018-4170
- CVE-2018-4105
- CVE-2018-4112
- CVE-2018-4166
- CVE-2018-4155
- CVE-2018-4158
- CVE-2018-4142
- CVE-2017-13890
- CVE-2017-8816
- CVE-2018-4176
- CVE-2018-4108
- CVE-2017-13080
- CVE-2018-4167
- CVE-2018-4151
- CVE-2018-4132
- CVE-2018-4135
- CVE-2018-4150
- CVE-2018-4104
- CVE-2018-4143
- CVE-2018-4136
- CVE-2018-4160
- CVE-2018-4185
- CVE-2018-4139
- CVE-2018-4175
- CVE-2017-15412
- CVE-2018-4187
- CVE-2018-4179
- CVE-2018-4111
- CVE-2018-4174
- CVE-2018-4152
- CVE-2017-7151
- CVE-2018-4138
- CVE-2018-4107
- CVE-2018-4156
- CVE-2018-4157
- CVE-2018-4298
- CVE-2018-4144
- CVE-2017-13911
- CVE-2018-4173
- CVE-2018-4154
- CVE-2018-4115
- CVE-2018-4106
- CVE-2018-4131
Frequently Asked Questions
What is CVE-2018-4152?
CVE-2018-4152 is a vulnerability in certain Apple products before macOS 10.13.4 that involves the Notes component and allows attackers to execute arbitrary code in a privileged context via a crafted app.
How does CVE-2018-4152 affect macOS?
CVE-2018-4152 affects macOS versions before 10.13.4.
What is the severity of CVE-2018-4152?
CVE-2018-4152 has a severity rating of 7 (high).
How can I fix CVE-2018-4152?
To fix CVE-2018-4152, update your macOS to version 10.13.4 or later.
Where can I find more information about CVE-2018-4152?
You can find more information about CVE-2018-4152 at the following references: [1] [2] [3].