20190513 APPLE-SA-2019-5-13-2 macOS Mojave 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra

20190514 APPLE-SA-2019-5-13-2 macOS Mojave 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra

https://support.apple.com/kb/HT208937

https://support.apple.com/kb/HT209139

https://support.apple.com/kb/HT209341

https://support.apple.com/kb/HT210119

The remote host is running a version of macOS / Mac OS X that is 10.x prior to 10.14.5. It is, therefore, affected by the following vulnerabilities :

 - A validation issue was addressed with improved input sanitization.(CVE-2019-8603,CVE-2019-8560)

 - A memory corruption issue was addressed with improved memory handling.(CVE-2019-8635,CVE-2019-8616,CVE-2018-4456,CVE-2019-8604,CVE-2019-8574,CVE-2019-8569)

 - A logic issue was addressed with improved restrictions.(CVE-2019-8590)

 - A memory corruption issue was addressed with improved error handling.(CVE-2019-8592)

 - An out-of-bounds read was addressed with improved input validation.(CVE-2019-8585,CVE-2019-8607)

 - This issue was addressed with improved checks.(CVE-2019-8589)

 - An out-of-bounds read was addressed with improved bounds checking.(CVE-2019-8560,CVE-2019-8576)

 - An authentication issue was addressed with improved state management.(CVE-2019-8634)

 - A memory initialization issue was addressed with improved memory handling.(CVE-2019-8629)

 - A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks.(CVE-2019-8606,CVE-2019-8568)

 - A use after free issue was addressed with improved memory management.(CVE-2019-8605)

 - A type confusion issue was addressed with improved memory handling.(CVE-2019-8591)

 - An input validation issue was addressed with improved memory handling.(CVE-2019-8577)

 - A memory corruption issue was addressed with improved input validation.(CVE-2019-8600)

 - An input validation issue was addressed with improved input validation.(CVE-2019-8598)

 - A memory corruption issue was addressed by removing the vulnerable code.(CVE-2019-8602)

 - Multiple memory corruption issues were addressed with improved memory handling.(CVE-2019-6237,CVE-2019-8571,CVE-2019-8583,CVE-2019-8584,CVE-2019-8586,CVE-2019-8587,CVE-2019-8594,CVE-2019-8595,CVE-2019-8596,CVE-2019-8597,CVE-2019-8601,CVE-2019-8608,CVE-2019-8609,CVE-2019-8610,CVE-2019-8611,CVE-2019-8615,CVE-2019-8619,CVE-2019-8622,CVE-2019-8623,CVE-2019-8628)

The remote host is running Mac OS X 10.12.6 or Mac OS X 10.13.6 and is missing a security update. It is, therefore, affected by multiple vulnerabilities :

  - An application may be able to read restricted memory (CVE-2019-8603, CVE-2019-8560)

  - An application may be able to execute arbitrary code with system privileges (CVE-2019-8635, CVE-2019-8616,     CVE-2019-8629, CVE-2018-4456, CVE-2019-8604, CVE-2019-8574, CVE-2019-8569)

  - An application may be able to execute arbitrary code with kernel privileges (CVE-2019-8590)

  - Processing a maliciously crafted audio file may lead to arbitrary code execution (CVE-2019-8592)

  - Processing a maliciously crafted movie file may lead to arbitrary code execution (CVE-2019-8585)

  - A malicious application may bypass Gatekeeper checks (CVE-2019-8589)

  - A malicious application may be able to read restricted memory (CVE-2019-8560, CVE-2019-8598)

  - A user may be unexpectedly logged in to another users account (CVE-2019-8634)

  - A local user may be able to load unsigned kernel extensions (CVE-2019-8606)

  - A malicious application may be able to execute arbitrary code with system privileges (CVE-2019-8605)

  - A local user may be able to cause unexpected system termination or read kernel memory (CVE-2019-8576)

  - An application may be able to cause unexpected system termination or write kernel memory (CVE-2019-8591)

  - An application may be able to gain elevated privileges (CVE-2019-8577)

  - A maliciously crafted SQL query may lead to arbitrary code execution (CVE-2019-8600)

  - A malicious application may be able to elevate privileges (CVE-2019-8602)

  - A local user may be able to modify protected parts of the file system (CVE-2019-8568)

  - Processing maliciously crafted web content may lead to arbitrary code execution (CVE-2019-6237, CVE-2019-8571,     CVE-2019-8583, CVE-2019-8584, CVE-2019-8586, CVE-2019-8587, CVE-2019-8594, CVE-2019-8595, CVE-2019-8596,     CVE-2019-8597, CVE-2019-8601,CVE-2019-8608, CVE-2019-8609, CVE-2019-8610, CVE-2019-8611, CVE-2019-8615,     CVE-2019-8619, CVE-2019-8622, CVE-2019-8623, CVE-2019-8628)

  - Processing maliciously crafted web content may result in the disclosure of process memory (CVE-2019-8607)

Note that Nessus has not tested for this issue but has instead relied only on the operating system's self-reported version number.

The remote host is running a version of macOS / Mac OS X that is 10.14.x prior to 10.14.5. It is, therefore, affected by multiple vulnerabilities :

  - An application may be able to read restricted memory (CVE-2019-8603, CVE-2019-8560)

  - An application may be able to execute arbitrary code with system privileges (CVE-2019-8635, CVE-2019-8616,   CVE-2019-8629, CVE-2018-4456, CVE-2019-8604,CVE-2019-8574, CVE-2019-8569)

  - An application may be able to execute arbitrary code with kernel privileges (CVE-2019-8590)

  - Processing a maliciously crafted audio file may lead to arbitrary code execution (CVE-2019-8592)

  - Processing a maliciously crafted movie file may lead to arbitrary code execution (CVE-2019-8585)

  - A malicious application may bypass Gatekeeper checks (CVE-2019-8589)

  - A malicious application may be able to read restricted memory (CVE-2019-8560, CVE-2019-8598)

  - A user may be unexpectedly logged in to another users account (CVE-2019-8634)

  - A local user may be able to load unsigned kernel extensions (CVE-2019-8606)

  - A malicious application may be able to execute arbitrary code with system privileges (CVE-2019-8605)

  - A local user may be able to cause unexpected system termination or read kernel memory (CVE-2019-8576)

  - An application may be able to cause unexpected system termination or write kernel memory (CVE-2019-8591)

  - An application may be able to gain elevated privileges (CVE-2019-8577)

  - A maliciously crafted SQL query may lead to arbitrary code execution (CVE-2019-8600)

  - A malicious application may be able to elevate privileges (CVE-2019-8602)

  - A local user may be able to modify protected parts of the file system (CVE-2019-8568)

  - Processing maliciously crafted web content may lead to arbitrary code execution (CVE-2019-6237, CVE-2019-8571,     CVE-2019-8583, CVE-2019-8584, CVE-2019-8586, CVE-2019-8587, CVE-2019-8594, CVE-2019-8595, CVE-2019-8596,     CVE-2019-8597, CVE-2019-8601, CVE-2019-8608, CVE-2019-8609, CVE-2019-8610, CVE-2019-8611, CVE-2019-8615,     CVE-2019-8619, CVE-2019-8622, CVE-2019-8623, CVE-2019-8628)

  - Processing maliciously crafted web content may result in the disclosure of process memory (CVE-2019-8607)

Note that Nessus has not tested for this issue but has instead relied only on the operating system's self-reported version number.

The remote host is running a version of macOS / Mac OS X that is 10.13.x prior to 10.13.6. It is, therefore, affected by multiple vulnerabilities.

Note that successful exploitation of the most serious issues can result in arbitrary code execution.

ID	Name	Product	Family	Severity
700667	macOS 10.x < 10.14.5 Multiple Vulnerabilities (APPLE-SA-2019-05-09)	Nessus Network Monitor	Operating System Detection	high
125151	macOS and Mac OS X Multiple Vulnerabilities (Security Update 2019-003)	Nessus	MacOS X Local Security Checks	high
125150	macOS 10.14.x < 10.14.5 Multiple Vulnerabilities	Nessus	MacOS X Local Security Checks	high
111137	macOS 10.13.x < 10.13.6 Multiple Vulnerabilities	Nessus	MacOS X Local Security Checks	critical

CVE-2018-4456

Description

References

Details

Risk Information

CVSS v2.0

CVSS v3.0

Vulnerable Software

Configuration 1

Tenable Plugins