Vulnerability Details CVE-2018-4220
An issue was discovered in certain Apple products. Swift before 4.1.1 Security Update 2018-001 is affected. The issue involves the "Swift for Ubuntu" component. It allows attackers to execute arbitrary code in a privileged context because write and execute permissions are enabled during library loading.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 62.1%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 9.3
References
Products affected by CVE-2018-4220
-
cpe:2.3:a:apple:swift:2.2
-
cpe:2.3:a:apple:swift:2.2.1
-
cpe:2.3:a:apple:swift:3.0
-
cpe:2.3:a:apple:swift:3.0.1
-
cpe:2.3:a:apple:swift:3.0.2
-
cpe:2.3:a:apple:swift:3.1
-
cpe:2.3:a:apple:swift:3.1.1
-
cpe:2.3:a:apple:swift:4.0
-
cpe:2.3:a:apple:swift:4.0.2
-
cpe:2.3:a:apple:swift:4.0.3
-
cpe:2.3:a:apple:swift:4.1