macOS and Mac OS X Multiple Vulnerabilities (Security Update 2019-003)

critical Nessus Plugin ID 125151

Synopsis

The remote host is missing a macOS or Mac OS X security update that fixes multiple vulnerabilities

Description

The remote host is running Mac OS X 10.12.6 or Mac OS X 10.13.6 and is missing a security update. It is, therefore, affected by multiple vulnerabilities :

- An application may be able to read restricted memory (CVE-2019-8603, CVE-2019-8560)

- An application may be able to execute arbitrary code with system privileges (CVE-2019-8635, CVE-2019-8616, CVE-2019-8629, CVE-2018-4456, CVE-2019-8604, CVE-2019-8574, CVE-2019-8569)

- An application may be able to execute arbitrary code with kernel privileges (CVE-2019-8590)

- Processing a maliciously crafted audio file may lead to arbitrary code execution (CVE-2019-8592)

- Processing a maliciously crafted movie file may lead to arbitrary code execution (CVE-2019-8585)

- A malicious application may bypass Gatekeeper checks (CVE-2019-8589)

- A malicious application may be able to read restricted memory (CVE-2019-8560, CVE-2019-8598)

- A user may be unexpectedly logged in to another users account (CVE-2019-8634)

- A local user may be able to load unsigned kernel extensions (CVE-2019-8606)

- A malicious application may be able to execute arbitrary code with system privileges (CVE-2019-8605)

- A local user may be able to cause unexpected system termination or read kernel memory (CVE-2019-8576)

- An application may be able to cause unexpected system termination or write kernel memory (CVE-2019-8591)

- An application may be able to gain elevated privileges (CVE-2019-8577)

- A maliciously crafted SQL query may lead to arbitrary code execution (CVE-2019-8600)

- A malicious application may be able to elevate privileges (CVE-2019-8602)

- A local user may be able to modify protected parts of the file system (CVE-2019-8568)

- Processing maliciously crafted web content may lead to arbitrary code execution (CVE-2019-6237, CVE-2019-8571, CVE-2019-8583, CVE-2019-8584, CVE-2019-8586, CVE-2019-8587, CVE-2019-8594, CVE-2019-8595, CVE-2019-8596, CVE-2019-8597, CVE-2019-8601,CVE-2019-8608, CVE-2019-8609, CVE-2019-8610, CVE-2019-8611, CVE-2019-8615, CVE-2019-8619, CVE-2019-8622, CVE-2019-8623, CVE-2019-8628)

- Processing maliciously crafted web content may result in the disclosure of process memory (CVE-2019-8607)

Note that Nessus has not tested for this issue but has instead relied only on the operating system's self-reported version number.

Solution

Install Security Update 2019-003 or later for 10.12.x or Security Update 2019-003 or later for 10.13.x

See Also

https://support.apple.com/en-us/HT210119

Plugin Details

Severity: Critical

ID: 125151

File Name: macosx_SecUpd2019-003.nasl

Version: 1.11

Type: local

Agent: macosx

Published: 5/15/2019

Updated: 4/25/2023

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: High

Score: 7.4

CVSS v2

Risk Factor: High

Base Score: 9.3

Temporal Score: 7.7

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2019-8629

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Temporal Score: 9.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C

CVSS Score Source: CVE-2019-8600

Vulnerability Information

CPE: cpe:/o:apple:mac_os_x, cpe:/o:apple:macos

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 5/9/2019

Vulnerability Publication Date: 4/3/2019

CISA Known Exploited Vulnerability Due Dates: 7/18/2022

Reference Information

CVE: CVE-2018-4456, CVE-2019-6237, CVE-2019-8560, CVE-2019-8568, CVE-2019-8569, CVE-2019-8571, CVE-2019-8574, CVE-2019-8576, CVE-2019-8577, CVE-2019-8583, CVE-2019-8584, CVE-2019-8585, CVE-2019-8586, CVE-2019-8587, CVE-2019-8589, CVE-2019-8590, CVE-2019-8591, CVE-2019-8592, CVE-2019-8594, CVE-2019-8595, CVE-2019-8596, CVE-2019-8597, CVE-2019-8598, CVE-2019-8600, CVE-2019-8601, CVE-2019-8602, CVE-2019-8603, CVE-2019-8604, CVE-2019-8605, CVE-2019-8606, CVE-2019-8607, CVE-2019-8608, CVE-2019-8609, CVE-2019-8610, CVE-2019-8611, CVE-2019-8615, CVE-2019-8616, CVE-2019-8619, CVE-2019-8622, CVE-2019-8623, CVE-2019-8628, CVE-2019-8629, CVE-2019-8634, CVE-2019-8635

APPLE-SA: APPLE-SA-2019-05-09, HT210119