Tenable700522.PRMmacOS 10.14.x < 10.14.4 Multiple Vulnerabilities
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.002 Low
EPSS
Percentile
53.6%
The remote host is running a version of macOS / Mac OS X that is 10.14.x prior to 10.14.4. It is, therefore, affected by multiple vulnerabilities, including:
-
Mounting a maliciously crafted NFS network share may lead to arbitrary code execution with system privileges. (CVE-2019-8508)
-
An application may be able to execute arbitrary code with kernel privileges. (CVE-2019-8529)
-
A malicious application may be able to execute arbitrary code with system privileges (CVE-2019-8549)
Binary data 700522.prmReferences
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12015
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18311
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18313
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6207
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6237
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6239
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7293
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8502
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8504
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8507
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8508
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8510
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8511
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8513
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8514
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8516
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8517
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8519
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8520
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8521
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8522
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8526
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8527
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8529
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8530
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8533
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8537
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8540
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8542
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8545
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8546
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8549
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8550
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8552
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8555
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8561
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8565
www.nessus.org/u?71533e9d
support.apple.com/en-us/HT209600
Related
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.002 Low
EPSS
Percentile
53.6%