CVE-2018-4446: Input Validation
Published Dec 5, 2018
·Updated
File Provider. This issue was addressed with improved entitlements.
Other sources
This issue was addressed with improved entitlements. This issue affected versions prior to iOS 12.1.1.
Credit
Luke Deshotels, Jordan Beichler, William Enck(North Carolina State)
Affected Software
2 affected componentsFixes available
Apple iOS and iPadOS<12.1.1
12.1.1
iPhone OS<12.1.1
Event History
Apr 3, 2019
CVE Published
via MITRE·05:43 PM
Data Sourced
via MITRE·05:43 PM
DescriptionWeakness
Peer vulnerabilities
Found alongside the following vulnerabilities.
Frequently Asked Questions
1
What is the vulnerability ID?
The vulnerability ID is CVE-2018-4446.
2
What is the severity of CVE-2018-4446?
The severity of CVE-2018-4446 is medium (3.3).
3
What is the affected software?
The affected software is iOS versions prior to 12.1.1.
4
How was the vulnerability addressed?
The vulnerability was addressed with improved entitlements.
5
Where can I find more information about CVE-2018-4446?
You can find more information about CVE-2018-4446 at the following references: [Apple Support](https://support.apple.com/en-us/HT209340) and [Apple KB](https://support.apple.com/kb/HT209340).