CVE-2018-4428: High severity apple ios and ipados vulnerability

Q: What is CVE-2018-4428?

CVE-2018-4428 is a vulnerability in iOS that allowed access to the share function on a locked device.

Q: How does CVE-2018-4428 affect iOS?

CVE-2018-4428 affects iOS by allowing a local attacker to share items from the lock screen on a locked device.

Q: What is the severity of CVE-2018-4428?

The severity of CVE-2018-4428 is high, with a CVSS score of 7.1.

Q: How was CVE-2018-4428 fixed?

CVE-2018-4428 was fixed in iOS version 12.1.1 by restricting options offered on a locked device.

Q: Where can I find more information about CVE-2018-4428?

You can find more information about CVE-2018-4428 on the Apple support website: [link](https://support.apple.com/en-us/HT209340).

Published Dec 5, 2018

Updated

VoiceOver. A lock screen issue allowed access to the share function on a locked device. This issue was addressed by restricting options offered on a locked device.

Other sources

A lock screen issue allowed access to the share function on a locked device. This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 12.1.1. A local attacker may be able to share items from the lock screen.

Credit

videosdebarraquito

Affected Software

2 affected componentsFixes available

Apple iOS and iPadOS<12.1.1

12.1.1

iPhone OS<12.1.1

Event History

Oct 27, 2020

CVE Published

via MITRE·07:19 PM

Data Sourced

via MITRE·07:19 PM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

HT209340

Peer vulnerabilities

Found alongside the following vulnerabilities.

Frequently Asked Questions

What is CVE-2018-4428?

CVE-2018-4428 is a vulnerability in iOS that allowed access to the share function on a locked device.

How does CVE-2018-4428 affect iOS?