Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2019-2023 and is owned by Tenable, Inc. or an Affiliate thereof.MACOS_SECUPD_10_13_6_2019-002.NASL
HistoryMar 27, 2019 - 12:00 a.m.

macOS 10.13.6 Multiple Vulnerabilities (Security Update 2019-002)

2019-03-2700:00:00
This script is Copyright (C) 2019-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
14
JSON

The remote host is running macOS 10.13.6 and is missing a security update. It is therefore, affected by multiple vulnerabilities including:

  • An application may be able to execute arbitrary code with kernel privileges. (CVE-2019-8529)

  • A local user may be able to read kernel memory. (CVE-2019-8504)

  • A malicious application may be able to determine kernel memory layout. (CVE-2019-6207, CVE-2019-8510)

  • 802.1X

  • DiskArbitration

  • Feedback Assistant

  • IOKit

  • IOKit SCSI

  • Kernel

  • PackageKit

  • Perl

  • Security

  • Time Machine

  • Wi-Fi

#
# (C) Tenable Network Security, Inc.
#

include('compat.inc');

if (description)
{
  script_id(123130);
  script_version("1.12");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/04/17");

  script_cve_id(
    "CVE-2018-12015",
    "CVE-2018-18311",
    "CVE-2018-18313",
    "CVE-2019-6207",
    "CVE-2019-8504",
    "CVE-2019-8510",
    "CVE-2019-8513",
    "CVE-2019-8520",
    "CVE-2019-8521",
    "CVE-2019-8522",
    "CVE-2019-8526",
    "CVE-2019-8527",
    "CVE-2019-8529",
    "CVE-2019-8555",
    "CVE-2019-8561",
    "CVE-2019-8564"
  );
  script_bugtraq_id(104423, 106072, 106145);
  script_xref(name:"APPLE-SA", value:"APPLE-SA-2019-3-25-2");
  script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2023/05/08");

  script_name(english:"macOS 10.13.6 Multiple Vulnerabilities (Security Update 2019-002)");

  script_set_attribute(attribute:"synopsis", value:
"The remote host is missing a macOS security update that fixes
multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The remote host is running macOS 10.13.6 and is missing a security
update. It is therefore, affected by multiple vulnerabilities
including:

  - An application may be able to execute arbitrary code with kernel
    privileges. (CVE-2019-8529)

  - A local user may be able to read kernel memory. (CVE-2019-8504)

  - A malicious application may be able to determine kernel memory
    layout. (CVE-2019-6207, CVE-2019-8510)

  - 802.1X
  - DiskArbitration
  - Feedback Assistant
  - IOKit
  - IOKit SCSI
  - Kernel
  - PackageKit
  - Perl
  - Security
  - Time Machine
  - Wi-Fi");
  script_set_attribute(attribute:"see_also", value:"https://support.apple.com/en-us/HT209600");
  script_set_attribute(attribute:"see_also", value:"https://support.apple.com/en-us/HT209635");
  # https://lists.apple.com/archives/security-announce/2019/Mar/msg00001.html
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?71533e9d");
  script_set_attribute(attribute:"solution", value:
"Install Security Update 2019-002 or later for 10.13.6.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:H/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-8527");
  script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2018-18311");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'Mac OS X TimeMachine (tmdiagnose) Command Injection Privilege Escalation');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2019/03/25");
  script_set_attribute(attribute:"patch_publication_date", value:"2019/03/25");
  script_set_attribute(attribute:"plugin_publication_date", value:"2019/03/27");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:apple:mac_os_x");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:apple:macos");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"MacOS X Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2019-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/MacOSX/Version", "Host/MacOSX/packages/boms");

  exit(0);
}

include('lists.inc');
include('vcf.inc');
include('vcf_extras_apple.inc');

app_info = vcf::apple::macos::get_app_info();

constraints = [
  { 'min_version' : '10.13', 'max_version' : '10.13.6', 'fixed_build': '17G6029', 'fixed_display' : '10.13.6 Security Update 2019-002' }
];
vcf::apple::macos::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_HOLE);
VendorProductVersionCPE
applemac_os_xcpe:/o:apple:mac_os_x
applemacoscpe:/o:apple:macos

References

Related

openvas 34
nessus 58
ubuntu 4
photon 2
redhat 7
cloudfoundry 2
osv 6
suse 3
ibm 5
debian 5
fedora 3
attackerkb 1
prion 15
cisa_kev 1
apple 2
cve 15
packetstorm 1
redhatcve 3
veracode 2
hackerone 2
alpinelinux 3
checkpoint_advisories 2
debiancve 3
trendmicroblog 1
githubexploit 3
metasploit 1
amazon 4
rosalinux 1
centos 2
zdt 1
ubuntucve 3
oraclelinux 2
f5 1
zdi 1
openvas
openvas
Apple Mac OS X Security Updates (HT209600)-01
2019-03-26 00:00:00
Ubuntu: Security Advisory (USN-3834-2)
2022-08-26 00:00:00
Huawei EulerOS: Security Advisory for perl (EulerOS-SA-2019-1464)
2020-01-23 00:00:00
nessus
nessus
macOS and Mac OS X Multiple Vulnerabilities (Security Update 2019-002)
2019-03-27 00:00:00
macOS 10.14.x < 10.14.4 Multiple Vulnerabilities
2019-03-27 00:00:00
Photon OS 2.0: Perl PHSA-2019-2.0-0135
2019-03-18 00:00:00
ubuntu
ubuntu
Perl vulnerabilities
2018-12-03 00:00:00
Perl vulnerabilities
2018-12-03 00:00:00
Perl vulnerability
2018-06-13 00:00:00
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2019-2.0-0135
2019-02-26 00:00:00
Critical Photon OS Security Update - PHSA-2019-0135
2019-02-26 00:00:00
redhat
redhat
(RHSA-2019:0010) Important: rh-perl524-perl security update
2019-01-02 15:45:54
(RHSA-2019:0001) Important: rh-perl526-perl security and enhancement update
2019-01-02 11:23:00
(RHSA-2019:1942) Important: perl security update
2019-07-30 08:22:39
cloudfoundry
cloudfoundry
USN-3834-1: Perl vulnerabilities | Cloud Foundry
2018-12-27 00:00:00
USN-3684-1: Perl vulnerability | Cloud Foundry
2018-06-20 00:00:00
osv
osv
perl - security update
2018-11-29 00:00:00
CVE-2018-18313
2018-12-07 21:29:00
perl - security update
2018-06-12 00:00:00
suse
suse
Security update for perl (moderate)
2018-12-23 00:11:37
Security update for perl (important)
2018-07-20 03:07:52
Security update for perl (moderate)
2018-07-20 03:08:27
ibm
ibm
Security Bulletin: IBM MQ Cloud Paks are vulnerable to multiple vulnerabilities in Perl (CVE-2018-18312 CVE-2018-18313 CVE-2018-18314 CVE-2018-18311)
2019-01-30 11:50:01
Security Bulletin: A vulnerability in Perl affects PowerKVM
2019-03-04 05:55:02
Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a heap-based buffer overflow in Perl (CVE-2018-18311).
2023-01-12 21:59:00
debian
debian
[SECURITY] [DSA 4347-1] perl security update
2018-11-29 22:09:43
[SECURITY] [DSA 4347-1] perl security update
2018-11-29 22:09:43
[SECURITY] [DSA 4226-1] perl security update
2018-06-12 04:48:02
fedora
fedora
[SECURITY] Fedora 29 Update: perl-5.28.1-425.fc29
2018-12-02 08:28:33
[SECURITY] Fedora 27 Update: perl-Archive-Tar-2.28-1.fc27
2018-06-18 15:17:40
[SECURITY] Fedora 28 Update: perl-Archive-Tar-2.28-1.fc28
2018-06-18 16:20:15
attackerkb
attackerkb
CVE-2019-8526
2019-12-18 00:00:00
prion
prion
Design/Logic Flaw
2019-12-18 18:15:00
Cross site scripting
2019-12-18 18:15:00
Design/Logic Flaw
2018-12-07 21:29:00
cisa_kev
cisa_kev
Apple macOS Use-After-Free Vulnerability
2023-04-17 00:00:00
apple
apple
About the security content of macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra
2019-03-25 00:00:00
About the security content of macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra - Apple Support
2020-07-27 08:22:02
cve
cve
CVE-2019-8521
2019-12-18 18:15:00
CVE-2019-8513
2019-12-18 18:15:00
CVE-2019-8526
2019-12-18 18:15:00
packetstorm
packetstorm
Mac OS X TimeMachine (tmdiagnose) Command Injection Privilege Escalation
2019-07-01 00:00:00
redhatcve
redhatcve
CVE-2018-18313
2020-04-07 04:50:03
CVE-2018-12015
2019-11-10 15:09:37
CVE-2018-18311
2020-01-26 16:06:28
veracode
veracode
Information Disclosure
2019-05-16 03:25:55
Remote Code Execution (RCE)
2019-01-15 09:27:18
hackerone
hackerone
Internet Bug Bounty: [CVE-2018-18313] regcomp: heap-buffer-overflow read in S_grok_bslash_N
2019-03-16 06:11:59
Internet Bug Bounty: Integer overflow leading to buffer overflow
2018-10-15 23:30:09
alpinelinux
alpinelinux
CVE-2018-18313
2018-12-07 21:29:00
CVE-2018-12015
2018-06-07 13:29:00
CVE-2018-18311
2018-12-07 21:29:00
checkpoint_advisories
checkpoint_advisories
Perl Archive Tar Arbitrary File Overwrite (CVE-2018-12015)
2018-10-02 00:00:00
MacOS Out Of Bounds Read (CVE-2019-6207)
2020-05-31 00:00:00
debiancve
debiancve
CVE-2018-18313
2018-12-07 21:29:00
CVE-2018-12015
2018-06-07 13:29:00
CVE-2018-18311
2018-12-07 21:29:00
trendmicroblog
trendmicroblog
CVE-2019-8561: A Hard-to-Banish PackageKit Framework Vulnerability in macOS
2022-11-11 00:00:00
githubexploit
githubexploit
Exploit for OS Command Injection in Apple Mac Os X
2019-04-30 07:06:23
Exploit for Improper Input Validation in Apple Mac Os X
2019-06-07 23:48:55
Exploit for Out-of-bounds Read in Apple Iphone Os
2020-04-10 14:30:16
metasploit
metasploit
Mac OS X TimeMachine (tmdiagnose) Command Injection Privilege Escalation
2019-04-14 12:58:57
amazon
amazon
Medium: perl-Archive-Tar
2019-09-13 22:59:00
Medium: perl-Archive-Tar
2019-10-21 18:01:00
Important: perl
2019-03-07 18:29:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1984
2021-07-02 18:14:30
centos
centos
perl security update
2019-08-30 03:56:16
perl security update
2019-01-24 15:18:07
zdt
zdt
MacOS X #TimeMachine - (tmdiagnose) Command Injection Privilege Escalation Exploit #RCE
2019-07-02 00:00:00
ubuntucve
ubuntucve
CVE-2018-18313
2018-11-29 00:00:00
CVE-2018-12015
2018-06-07 00:00:00
CVE-2018-18311
2018-11-29 00:00:00
oraclelinux
oraclelinux
perl-Archive-Tar security update
2019-08-13 00:00:00
perl security update
2019-01-21 00:00:00
f5
f5
K39178480 : Perl vulnerability CVE-2018-18311
2022-09-14 00:00:00
zdi
zdi
Apple macOS SCSITaskUserClient Out-Of-Bounds Write Privilege Escalation Vulnerability
2019-03-26 00:00:00
JSON
Related for MACOS_SECUPD_10_13_6_2019-002.NASL
openvas34nessus58ubuntu4photon2redhat7cloudfoundry2osv6suse3ibm5debian5fedora3attackerkb1prion15cisa_kev1apple2cve15packetstorm1redhatcve3veracode2hackerone2alpinelinux3checkpoint_advisories2debiancve3trendmicroblog1githubexploit3metasploit1amazon4rosalinux1centos2zdt1ubuntucve3oraclelinux2f51zdi1