CVE-2018-4298
First published: Thu Mar 29 2018(Updated: )
Remote Management. A permissions issue existed in Remote Management. This issue was addressed through improved permission validation.
Credit: Tim van der Werff SupCloud product-security@apple.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple Apple Tv | <11.2.5 | |
| Apple iPhone OS | <11.2.5 | |
| Apple Mac OS X | >=10.13.0<10.13.3 | |
| Apple watchOS | <4.2.2 | |
| Apple macOS High Sierra | <10.13.4 | 10.13.4 |
| Apple Sierra | ||
| Apple El Capitan |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2018-4170
- CVE-2018-4105
- CVE-2018-4112
- CVE-2018-4166
- CVE-2018-4155
- CVE-2018-4158
- CVE-2018-4142
- CVE-2017-13890
- CVE-2017-8816
- CVE-2018-4176
- CVE-2018-4108
- CVE-2017-13080
- CVE-2018-4167
- CVE-2018-4151
- CVE-2018-4132
- CVE-2018-4135
- CVE-2018-4150
- CVE-2018-4104
- CVE-2018-4143
- CVE-2018-4136
- CVE-2018-4160
- CVE-2018-4185
- CVE-2018-4139
- CVE-2018-4175
- CVE-2017-15412
- CVE-2018-4187
- CVE-2018-4179
- CVE-2018-4111
- CVE-2018-4174
- CVE-2018-4152
- CVE-2017-7151
- CVE-2018-4138
- CVE-2018-4107
- CVE-2018-4156
- CVE-2018-4157
- CVE-2018-4298
- CVE-2018-4144
- CVE-2017-13911
- CVE-2018-4173
- CVE-2018-4154
- CVE-2018-4115
- CVE-2018-4106
- CVE-2018-4131
Frequently Asked Questions
What is CVE-2018-4298?
CVE-2018-4298 is a vulnerability in macOS High Sierra, Sierra, and El Capitan that allows unauthorized remote management.
What is the severity of CVE-2018-4298?
CVE-2018-4298 has a severity rating of 9.8 (Critical).
How does CVE-2018-4298 impact Apple TV, iPhone OS, macOS, and watchOS?
CVE-2018-4298 impacts Apple TV with version up to 11.2.5, iPhone OS with version up to 11.2.5, macOS up to 10.13.3, and watchOS up to 4.2.2.
What is the recommended solution for CVE-2018-4298?
Update to macOS High Sierra 10.13.4 or apply the Security Update 2018-001 for Sierra and El Capitan to address CVE-2018-4298.
Where can I find more information about CVE-2018-4298?
You can find more information about CVE-2018-4298 on the official Apple support page: https://support.apple.com/HT208465
- agent/type
- agent/last-modified-date
- agent/softwarecombine
- collector/apple-support
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/event
- agent/references
- agent/severity
- agent/author
- agent/first-publish-date
- agent/description
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/apple
- canonical/apple macos high sierra
- canonical/apple sierra
- canonical/apple el capitan
- canonical/apple apple tv
- canonical/apple iphone os
- canonical/apple mac os x
- version/apple mac os x/10.13.0
- canonical/apple watchos