Lucene search
TalosCVELIST:CVE-2018-4035HistoryJan 10, 2019 - 3:00 p.m.
CVE-2018-4035
2019-01-1015:00:00
talos
www.cve.org
7.1 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
0.0004 Low
EPSS
Percentile
5.1%
The CleanMyMac X software contains an exploitable privilege escalation vulnerability that exists due to improper input validation. An attacker with local access could use this vulnerability to modify the file system as root.
CNA Affected
[
{
"product": "Clean My Mac",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Clean My Mac X 4.04"
}
]
}
]Related
prion
prion
Privilege escalation
2019-01-10 15:29:00
nvd
nvd
CVE-2018-4035
2019-01-10 15:29:00
cve
cve
CVE-2018-4035
2019-01-10 15:29:00
talos
talos
CleanMyMac X truncateFileAtPath Privilege Escalation Vulnerability
2019-01-02 00:00:00
talosblog
talosblog
threatpost
threatpost
A Dozen Flaws in Popular Mac Clean-Up Software Allow Local Root Access
2019-01-03 21:50:22
7.1 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
0.0004 Low
EPSS
Percentile
5.1%
Related for CVELIST:CVE-2018-4035