macOS 10.14.x < 10.14.4 Multiple Vulnerabilities
Critical Nessus Plugin ID 123128
SynopsisThe remote host is missing a macOS update that fixes multiple security vulnerabilities.
DescriptionThe remote host is running a version of macOS / Mac OS X that is 10.14.x prior to 10.14.4. It is, therefore, affected by multiple vulnerabilities, including:
- Mounting a maliciously crafted NFS network share may lead to arbitrary code execution with system privileges. (CVE-2019-8508)
- An application may be able to execute arbitrary code with kernel privileges. (CVE-2019-8529)
- A malicious application may be able to execute arbitrary code with system privileges (CVE-2019-8549)
SolutionUpgrade to macOS version 10.14.4 or later.