Published: 11/01/2019 Updated: 23/01/2019

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 829

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

In iOS prior to 11.4, a memory corruption issue exists and was addressed with improved memory handling.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple iphone os

POC for CVE-2018-4327

brokentooth POC for CVE-2018-4327 (at least I think so since CVE-2018-4327 and CVE-2018-4330 were both discussed by @SparkZheng but it's not clear from him which one relates to which bug but since he described this one first I'm taking a guess) Tested on iPhone 6S 1131 Should work until 114 Let's you set the PC (ARM's version for IP register) to a value

brokentooth POC for CVE-2018-4327 (atleast I think so since CVE-2018-4327 and CVE-2018-4330 were both written about by @SparkZheng but it does not say which once relates to which bug but since he described this one first then I'm taking a guess) Tested on iPhone 6S 1131 Should work until 114 Let's you set the PC (ARM's version for IP register) to a value of y

CWE-119 https://support.apple.com/HT208848 http://www.securitytracker.com/id/1041665 http://www.securityfocus.com/bid/105384 https://nvd.nist.gov https://github.com/omerporze/brokentooth

CVE-2018-4330

Vulnerability Summary

Vulnerability Trend

Github Repositories

References

Vulmon Search

About

Products

Connect