Published: 08/06/2018 Updated: 24/08/2020

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 446

Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

An issue exists in certain Apple products. macOS prior to 10.13.5 is affected. The issue involves the "Speech" component. It allows malicious users to bypass a sandbox protection mechanism to obtain microphone access.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple mac os x

Full Disclosure mailing list archives   By Date By Thread </form>    APPLE-SA-2018-7-23-2 Additional information for APPLE-SA-2018-06-01-1 macOS High Sierra 10135, Security Update 2018-0 ...

osx-security-awesome A collection of OSX/iOS security related resources News Hardening Malware sample sources DFIR Reverse engineering Presentations and Papers Virus and exploit writeups Useful tools and guides Remote Access Toolkits Worth following on Twitter News Linking a microphone The Story of CVE-2018-4184 or how a vulnearbility in OSX's Sp

A collection of OSX and iOS security resources

osx-security-awesome A collection of OSX/iOS security related resources News Hardening Malware sample sources DFIR Reverse engineering Presentations and Papers Virus and exploit writeups Useful tools and guides Remote Access Toolkits Worth following on Twitter News Linking a microphone The Story of CVE-2018-4184 or how a vulnearbility in OSX's Sp

NVD-CWE-noinfo https://support.apple.com/HT208849 http://www.securitytracker.com/id/1041027 https://nvd.nist.gov https://github.com/MrE-Fog/ios-awe-sec-y https://github.com/kai5263499/osx-security-awesome http://seclists.org/fulldisclosure/2018/Jul/79

CVE-2018-4184

Vulnerability Summary

Vulnerability Trend

Mailing Lists

Github Repositories

References

Vulmon Search

About

Products

Connect