First published: Mon Sep 17 2018(Updated: )
Auto Unlock. A validation issue existed in the entitlement verification. This issue was addressed with improved validation of the process entitlement.
Credit: Min (Spark) Zheng Xiaolong Bai Alibaba IncMin (Spark) Zheng Alibaba IncXiaolong Bai Alibaba IncMin (Spark) Zheng Xiaolong Bai Alibaba Inc product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple iPhone OS | <12.0 | |
Apple Mac OS X | <10.14 | |
Apple tvOS | <12 | |
Apple macOS Mojave | <10.14 | 10.14 |
Apple iOS | <12 | 12 |
Apple tvOS | <12 | 12 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2018-4321 is a vulnerability that existed in the entitlement verification in Apple devices running iOS 12, macOS Mojave 10.14, and tvOS 12 or prior versions.
CVE-2018-4321 has a severity rating of 5.3, which is considered medium.
CVE-2018-4321 affects Apple devices running iOS 12, macOS Mojave 10.14, and tvOS 12 or prior versions.
To fix CVE-2018-4321, update your Apple device to iOS 12, macOS Mojave 10.14, or tvOS 12 or later versions.
You can find more information about CVE-2018-4321 on the Apple support website at the following links: [support.apple.com/kb/HT209106](support.apple.com/kb/HT209106), [support.apple.com/kb/HT209107](support.apple.com/kb/HT209107), [support.apple.com/kb/HT209139](support.apple.com/kb/HT209139).