CVE-2018-18363 — MEDIUM (6.2)

Q: How severe is CVE-2018-18363?

CVE-2018-18363 has been rated MEDIUM with a CVSS base score of 6.2/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2018-18363?

Check the references section above for vendor advisories and patch information. Affected products include: Symantec Norton App Lock.

Vulnerability Description

Norton App Lock prior to 1.4.0.445 can be susceptible to a bypass exploit. In this type of circumstance, the exploit can allow the user to circumvent the app to prevent it from locking the device, thereby allowing the individual to gain device access.

CVSS Score

6.2

MEDIUM

CVSS:3.0/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Symantec	Norton App Lock	< 1.4.0.445

References

http://www.securityfocus.com/bid/106450Third Party AdvisoryVDB Entry
https://support.symantec.com/en_US/article.SYMSA1473.htmlMitigationVendor Advisory
http://www.securityfocus.com/bid/106450Third Party AdvisoryVDB Entry
https://support.symantec.com/en_US/article.SYMSA1473.htmlMitigationVendor Advisory

FAQ

What is CVE-2018-18363?

CVE-2018-18363 is a vulnerability with a CVSS score of 6.2 (MEDIUM). Norton App Lock prior to 1.4.0.445 can be susceptible to a bypass exploit. In this type of circumstance, the exploit can allow the user to circumvent the app to prevent it from locking the device, the...

How severe is CVE-2018-18363?

CVE-2018-18363 has been rated MEDIUM with a CVSS base score of 6.2/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-18363?

Check the references section above for vendor advisories and patch information. Affected products include: Symantec Norton App Lock.