macOS 10.14.x < 10.14.3 Multiple Vulnerabilities

2019-04-1000:00:00

Tenable

www.tenable.com

JSON

The remote host is running a version of macOS / Mac OS X that is 10.14.x prior to 10.14.3. It is, therefore, affected by multiple vulnerabilities related to the following components:

AppleKeyStore
Bluetooth
Core Media
CoreAnimation
FaceTime
IOKit
Kernel
libxpc
Natural Language Processing
QuartzCore
SQLite
WebRTC

Note that successful exploitation of the most serious issues can result in arbitrary code execution.

Binary data 700521.prm

VendorProductVersionCPE
applemac_os_xcpe:/o:apple:mac_os_x

Vendor	Product	Version	CPE
apple	mac_os_x		cpe:/o:apple:mac_os_x

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20346

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20505

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20506

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6200

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6202

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6205

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6208

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6209

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6210

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6211

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6213

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6214

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6218

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6219

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6220

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6221

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6224

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6225

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6230

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6231

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6235

www.nessus.org/u?a77b9bea

support.apple.com/en-us/HT209446

JSON