Vulnerability-Lookup

CVE-2018-4397 (GCVE-0-2018-4397)

Vulnerability from cvelistv5 – Published: 2019-04-03 17:43 – Updated: 2024-08-05 05:11

Summary

Analytics data was sent using HTTP rather than HTTPS. This was addressed by sending analytics data using HTTPS. This issue affected versions prior to Apple Support 2.4 for iOS.

Severity ?

No CVSS data available.

CWE

An attacker in a privileged network position may be able to intercept analytics data sent to Apple

Assigner

apple

References

URL

	Vendor	Product	Version
	n/a	Apple Support app	Affected: Versions prior to: Apple Support for iOS 2.4

GHSA-G665-9726-CG3R

Vulnerability from github – Published: 2022-05-14 01:12 – Updated: 2022-05-14 01:12

Details

Analytics data was sent using HTTP rather than HTTPS. This was addressed by sending analytics data using HTTPS. This issue affected versions prior to Apple Support 2.4 for iOS.

Severity ?

4.3 (Medium)


                  
                    CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2018-4397"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-20"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2019-04-03T18:29:00Z",
    "severity": "MODERATE"
  },
  "details": "Analytics data was sent using HTTP rather than HTTPS. This was addressed by sending analytics data using HTTPS. This issue affected versions prior to Apple Support 2.4 for iOS.",
  "id": "GHSA-g665-9726-cg3r",
  "modified": "2022-05-14T01:12:20Z",
  "published": "2022-05-14T01:12:20Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-4397"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/kb/HT209117"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
      "type": "CVSS_V3"
    }
  ]
}

GSD-2018-4397

Vulnerability from gsd - Updated: 2023-12-13 01:22

Details

Analytics data was sent using HTTP rather than HTTPS. This was addressed by sending analytics data using HTTPS. This issue affected versions prior to Apple Support 2.4 for iOS.

Aliases

CVE-2018-4397

Aliases

CVE-2018-4397

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2018-4397",
    "description": "Analytics data was sent using HTTP rather than HTTPS. This was addressed by sending analytics data using HTTPS. This issue affected versions prior to Apple Support 2.4 for iOS.",
    "id": "GSD-2018-4397"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2018-4397"
      ],
      "details": "Analytics data was sent using HTTP rather than HTTPS. This was addressed by sending analytics data using HTTPS. This issue affected versions prior to Apple Support 2.4 for iOS.",
      "id": "GSD-2018-4397",
      "modified": "2023-12-13T01:22:28.480557Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "product-security@apple.com",
        "ID": "CVE-2018-4397",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Apple Support app",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "Versions prior to: Apple Support for iOS 2.4"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Analytics data was sent using HTTP rather than HTTPS. This was addressed by sending analytics data using HTTPS. This issue affected versions prior to Apple Support 2.4 for iOS."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "An attacker in a privileged network position may be able to intercept analytics data sent to Apple"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://support.apple.com/kb/HT209117",
            "refsource": "MISC",
            "url": "https://support.apple.com/kb/HT209117"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:apple:apple_support:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "2.4",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:apple:iphone_os:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2018-4397"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Analytics data was sent using HTTP rather than HTTPS. This was addressed by sending analytics data using HTTPS. This issue affected versions prior to Apple Support 2.4 for iOS."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-20"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT209117",
              "refsource": "MISC",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "https://support.apple.com/kb/HT209117"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "SINGLE",
            "availabilityImpact": "NONE",
            "baseScore": 4.0,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 8.0,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.0"
          },
          "exploitabilityScore": 2.8,
          "impactScore": 1.4
        }
      },
      "lastModifiedDate": "2019-04-05T15:30Z",
      "publishedDate": "2019-04-03T18:29Z"
    }
  }
}

FKIE_CVE-2018-4397

Vulnerability from fkie_nvd - Published: 2019-04-03 18:29 - Updated: 2024-11-21 04:07

Severity ?

4.3 (Medium) - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Summary

Analytics data was sent using HTTP rather than HTTPS. This was addressed by sending analytics data using HTTPS. This issue affected versions prior to Apple Support 2.4 for iOS.

References

	URL	Tags
	product-security@apple.com	https://support.apple.com/kb/HT209117	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://support.apple.com/kb/HT209117	Vendor Advisory

Impacted products

	Vendor	Product	Version
	apple	apple_support	*
	apple	iphone_os	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:apple:apple_support:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "90FEFFDA-399C-4692-BBBA-A5181D0D6998",
              "versionEndExcluding": "2.4",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:apple:iphone_os:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "B5415705-33E5-46D5-8E4D-9EBADC8C5705",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Analytics data was sent using HTTP rather than HTTPS. This was addressed by sending analytics data using HTTPS. This issue affected versions prior to Apple Support 2.4 for iOS."
    },
    {
      "lang": "es",
      "value": "Se enviaron datos de an\u00e1lisis utilizando HTTP en vez de HTTPS. Este problema se abord\u00f3 enviando datos de anal\u00edsis mediante HTTPS. Este problema afectaba a Apple Support para iOS en versiones anteriores a la 2.4."
    }
  ],
  "id": "CVE-2018-4397",
  "lastModified": "2024-11-21T04:07:20.073",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "SINGLE",
          "availabilityImpact": "NONE",
          "baseScore": 4.0,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 8.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 4.3,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
          "version": "3.0"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 1.4,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2019-04-03T18:29:13.033",
  "references": [
    {
      "source": "product-security@apple.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://support.apple.com/kb/HT209117"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://support.apple.com/kb/HT209117"
    }
  ],
  "sourceIdentifier": "product-security@apple.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-20"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CERTFR-2018-AVI-443

Vulnerability from certfr_avis - Published: 2018-09-18 - Updated: 2018-09-19

De multiples vulnérabilités ont été découvertes dans les produits Apple . Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, un contournement de la politique de sécurité et une atteinte à l'intégrité des données.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Apple	N/A	watchOS versions antérieures à 5
Apple	N/A	iOS versions antérieures à 12
Apple	N/A	Xcode versions antérieures à 10
Apple	Safari	Safari versions antérieures à 12
Apple	N/A	tvOS versions antérieures à 12
Apple	N/A	Apple Support pour iOS versions antérieures à 12

References

Title

Publication Time

Tags

Bulletin de sécurité Apple HT209117 du 17 septembre 2018	None	vendor-advisory
Bulletin de sécurité Apple HT209108 du 17 septembre 2018	None	vendor-advisory
Bulletin de sécurité Apple HT209135 du 17 septembre 2018	None	vendor-advisory
Bulletin de sécurité Apple HT209106 du 17 septembre 2018	None	vendor-advisory
Bulletin de sécurité Apple HT209109 du 17 septembre 2018	None	vendor-advisory
Bulletin de sécurité Apple HT209107 du 17 septembre 2018	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "watchOS versions ant\u00e9rieures \u00e0 5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    },
    {
      "description": "iOS versions ant\u00e9rieures \u00e0 12",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    },
    {
      "description": "Xcode versions ant\u00e9rieures \u00e0 10",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    },
    {
      "description": "Safari versions ant\u00e9rieures \u00e0 12",
      "product": {
        "name": "Safari",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    },
    {
      "description": "tvOS versions ant\u00e9rieures \u00e0 12",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    },
    {
      "description": "Apple Support pour iOS versions ant\u00e9rieures \u00e0 12",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2018-4322",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-4322"
    },
    {
      "name": "CVE-2018-4363",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-4363"
    },
    {
      "name": "CVE-2018-4325",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-4325"
    },
    {
      "name": "CVE-2018-4329",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-4329"
    },
    {
      "name": "CVE-2018-4352",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-4352"
    },
    {
      "name": "CVE-2018-4195",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-4195"
    },
    {
      "name": "CVE-2018-4307",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-4307"
    },
    {
      "name": "CVE-2018-4313",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-4313"
    },
    {
      "name": "CVE-2018-4397",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-4397"
    },
    {
      "name": "CVE-2018-4357",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-4357"
    },
    {
      "name": "CVE-2018-4305",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-4305"
    },
    {
      "name": "CVE-2018-4335",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-4335"
    },
    {
      "name": "CVE-2016-1777",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1777"
    },
    {
      "name": "CVE-2018-4330",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-4330"
    },
    {
      "name": "CVE-2018-5383",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-5383"
    },
    {
      "name": "CVE-2018-4338",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-4338"
    },
    {
      "name": "CVE-2018-4362",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-4362"
    },
    {
      "name": "CVE-2018-4356",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-4356"
    }
  ],
  "initial_release_date": "2018-09-18T00:00:00",
  "last_revision_date": "2018-09-19T00:00:00",
  "links": [],
  "reference": "CERTFR-2018-AVI-443",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2018-09-18T00:00:00.000000"
    },
    {
      "description": "Ajout du bulletin de s\u00e9curit\u00e9 Apple HT209135 du 17 septembre 2018",
      "revision_date": "2018-09-19T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Apple\n. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire, un contournement de la politique de\ns\u00e9curit\u00e9 et une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Apple",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Apple HT209117 du 17 septembre 2018",
      "url": "https://support.apple.com/en-us/HT209117"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Apple HT209108 du 17 septembre 2018",
      "url": "https://support.apple.com/en-us/HT209108"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Apple HT209135 du 17 septembre 2018",
      "url": "https://support.apple.com/en-us/HT209135"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Apple HT209106 du 17 septembre 2018",
      "url": "https://support.apple.com/en-us/HT209106"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Apple HT209109 du 17 septembre 2018",
      "url": "https://support.apple.com/en-us/HT209109"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Apple HT209107 du 17 septembre 2018",
      "url": "https://support.apple.com/en-us/HT209107"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2018-4397 (GCVE-0-2018-4397)

GHSA-G665-9726-CG3R

GSD-2018-4397

FKIE_CVE-2018-4397

CERTFR-2018-AVI-443

Solution

Tags

Sightings

Nomenclature