漏洞信息详情
CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iOS和macOS High Sierra WindowServer 安全漏洞
- CNNVD编号:CNNVD-201804-175
- 危害等级: 高危
- CVE编号: CVE-2018-4131
- 漏洞类型: 资料不足
- 发布时间: 2018-04-03
- 威胁类型: 本地
- 更新时间: 2019-10-23
- 厂 商: CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple
- 漏洞来源:
漏洞简介
CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iOS和macOS High Sierra都是美国苹果(CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple)公司的产品。CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iOS是为移动设备所开发的一套操作系统;macOS High Sierra是一套专为Mac计算机所开发的专用操作系统。WindowServer是其中的一个Window服务组件。
CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iOS 11.3之前版本和macOS High Sierra 10.13.4之前版本中的WindowServer组件存在安全漏洞。攻击者可借助可以扫描按键状态的特制应用程序利用该漏洞绕过安全输入模式的保护,记录输入其他应用程序的按键。
漏洞公告
目前厂商已发布升级补丁以修复漏洞,补丁获取链接:
https://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/zh-cn/HT208692
https://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/zh-cn/HT208693
参考网址
来源:CONFIRM
链接:https://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/HT208693
来源:CONFIRM
链接:https://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/HT208692
来源:MISC
链接:https://twitter.com/boastr_net/status/979624397664333824
来源:BID
链接:https://www.securityfocus.com/bid/103581
来源:SECTRACK
链接:http://www.securitytracker.com/id/1040604
来源:SECTRACK
链接:http://www.securitytracker.com/id/1040608
受影响实体
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPhone_os:4.0:-:Ipodtouch
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPhone_os:4.0.1
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPhone_os:4.0.1:-:iPhone
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPhone_os:4.3.5:-:Ipad
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPhone_os:4.3.5:-:Ipodtouch
补丁
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iOS和macOS High Sierra WindowServer 安全漏洞的修复措施
评论