First published: Mon Sep 17 2018(Updated: )
A configuration issue was addressed with additional restrictions. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra, watchOS 5, iOS 12, tvOS 12, macOS Mojave 10.14. A malicious application may be able to modify protected parts of the file system.
Credit: Vitaly Cheptsov Vitaly Cheptsov Vitaly Cheptsov Vitaly Cheptsov Vitaly Cheptsov product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple iPhone OS | <12.0 | |
Apple Mac OS X | <10.14.4 | |
Apple tvOS | <12.0 | |
Apple watchOS | <5.0 | |
Apple Mac OS X | <10.14 | |
Apple macOS Mojave | <10.14.4 | 10.14.4 |
Apple High Sierra | ||
Apple Sierra | ||
Apple macOS Mojave | <10.14 | 10.14 |
Apple iOS | <12 | 12 |
Apple tvOS | <12 | 12 |
Apple watchOS | <5 | 5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2018-4433 is a vulnerability in the dyld component of Apple products that can allow a malicious application to modify protected parts of the system.
CVE-2018-4433 affects macOS Mojave (up to version 10.14), Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra, watchOS (up to version 5), iOS (up to version 12), tvOS (up to version 12), and all previous versions of these products.
CVE-2018-4433 has a severity rating of 5.5, which is considered medium.
To fix CVE-2018-4433, update your affected Apple products to the latest available versions: macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra, watchOS 5, iOS 12, tvOS 12.
You can find more information about CVE-2018-4433 on the Apple support page: [link](https://support.apple.com/en-us/HT209107).