CVE-2018-4100

EUVD-2018-15886
An issue was discovered in certain Apple products. iOS before 11.2.5 is affected. macOS before 10.13.3 is affected. watchOS before 4.2.2 is affected. The issue involves the "LinkPresentation" component. It allows remote attackers to cause a denial of service (resource consumption) via a crafted text message.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 88%
Affected Products (NVD)
VendorProductVersion
appleiphone_os
𝑥
< 11.2.5
applemac_os_x
𝑥
< 10.13.3
applewatchos
𝑥
< 4.2.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/102772
http://www.securitytracker.com/id/1040265
http://www.securitytracker.com/id/1040267
https://support.apple.com/HT208463
https://support.apple.com/HT208464
https://support.apple.com/HT208465
http://www.securityfocus.com/bid/102772
http://www.securitytracker.com/id/1040265
http://www.securitytracker.com/id/1040267
https://support.apple.com/HT208463
https://support.apple.com/HT208464
https://support.apple.com/HT208465