CVE-2018-4087

high-risk
Published 2018-04-03

An issue was discovered in certain Apple products. iOS before 11.2.5 is affected. tvOS before 11.2.5 is affected. watchOS before 4.2.2 is affected. The issue involves the "Core Bluetooth" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

Do I need to act?

!
22.3% chance of exploitation in next 30 days
EPSS score — higher than 78% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
!
1 public exploit available
44215
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.8/10 High
LOCAL / LOW complexity

Affected Products (3)

Affected Vendors

Apple

References (14)

Third Party Advisory http://www.securityfocus.com/bid/102774
Third Party Advisory http://www.securitytracker.com/id/1040265
Exploit https://blog.zimperium.com/cve-2018-4087-poc-escaping-sandbox-misleading-bluetoo...
Vendor Advisory https://support.apple.com/HT208462
Vendor Advisory https://support.apple.com/HT208463
Vendor Advisory https://support.apple.com/HT208464
Exploit https://www.exploit-db.com/exploits/44215/
Third Party Advisory http://www.securityfocus.com/bid/102774
Third Party Advisory http://www.securitytracker.com/id/1040265
Exploit https://blog.zimperium.com/cve-2018-4087-poc-escaping-sandbox-misleading-bluetoo...
Vendor Advisory https://support.apple.com/HT208462
Vendor Advisory https://support.apple.com/HT208463
Vendor Advisory https://support.apple.com/HT208464
Exploit https://www.exploit-db.com/exploits/44215/
54
/ 100
high-risk
Severity 24/34 · High
Exploitability 21/34 · High
Exposure 9/34 · Low