Mac Os X Security Vulnerabilities - January 2019
In macOS High Sierra before 10.13.2, an access issue existed with privileged WiFi system configuration. This issue was addressed with additional restrictions.
6.5CVSS
6.3AI Score
0.001EPSS
In macOS High Sierra before 10.13.2, a logic issue existed in APFS when deleting keys during hibernation. This was addressed with improved state management.
7.5CVSS
6.9AI Score
0.001EPSS
In macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, a logic error existed in the validation of credentials. This was addressed with improved credential validation.
9.8CVSS
8.3AI Score
0.002EPSS
In macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, an out-of-bounds read was addressed with improved input validation.
9.8CVSS
8.3AI Score
0.002EPSS
In macOS High Sierra before 10.13.4, there was an issue with the handling of smartcard PINs. This issue was addressed with additional logic.
5.5CVSS
6.6AI Score
0.0004EPSS
In macOS High Sierra before 10.13.5, an issue existed in CUPS. This issue was addressed with improved access restrictions.
7.8CVSS
4.8AI Score
0.001EPSS
In macOS High Sierra before 10.13.5, an issue existed in CUPS. This issue was addressed with improved access restrictions.
5.5CVSS
4.8AI Score
0.001EPSS
In macOS High Sierra before 10.13.5, an access issue was addressed with additional sandbox restrictions on CUPS.
8.2CVSS
6.7AI Score
0.001EPSS
In macOS High Sierra before 10.13.5, an access issue was addressed with additional sandbox restrictions.
8.2CVSS
6.7AI Score
0.001EPSS
In iOS before 11.3, tvOS before 11.3, watchOS before 4.3, and macOS before High Sierra 10.13.4, an information disclosure issue existed in the transition of program state. This issue was addressed with improved state handling.
7.5CVSS
7.1AI Score
0.004EPSS
In iOS before 11.2.5, macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, watchOS before 4.2.2, and tvOS before 11.2.5, a memory corruption issue exists and was addressed with improved memory handling.
9.8CVSS
8.6AI Score
0.006EPSS
In iOS before 11.4, iCloud for Windows before 7.5, watchOS before 4.3.1, iTunes before 12.7.5 for Windows, and macOS High Sierra before 10.13.5, an out-of-bounds read was addressed with improved input validation.
8.8CVSS
6.7AI Score
0.006EPSS
In macOS High Sierra before 10.13.5, a privacy issue in the handling of Open Directory records was addressed with improved indexing.
7.5CVSS
6.7AI Score
0.002EPSS
In macOS High Sierra before 10.13.5, an input validation issue existed in the kernel. This issue was addressed with improved input validation.
9.8CVSS
7AI Score
0.002EPSS
In macOS High Sierra before 10.13.5, an out-of-bounds read was addressed with improved input validation.
5.5CVSS
5.8AI Score
0.0004EPSS
In macOS High Sierra before 10.13.5, an out-of-bounds read was addressed with improved input validation.
5.5CVSS
5.8AI Score
0.0004EPSS
In macOS High Sierra before 10.13.5, a buffer overflow was addressed with improved size validation.
9.8CVSS
7.5AI Score
0.003EPSS
In macOS High Sierra before 10.13.5, a buffer overflow was addressed with improved bounds checking.
9.8CVSS
7.5AI Score
0.003EPSS
In iOS before 11.4.1, watchOS before 4.3.2, tvOS before 11.4.1, Safari before 11.1.1, macOS High Sierra before 10.13.6, a spoofing issue existed in the handling of URLs. This issue was addressed with improved input validation.
7.5CVSS
5.7AI Score
0.005EPSS
In macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, a permissions issue existed in Remote Management. This issue was addressed through improved permission validation.
9.8CVSS
8.8AI Score
0.002EPSS
In iOS before 11.4 and macOS High Sierra before 10.13.5, a memory corruption issue exists and was addressed with improved memory handling.
8.8CVSS
6.6AI Score
0.001EPSS