CVSS: 5.5EPSS: 0%CPEs: 7EXPL: 0CVE-2018-4181 – cups: Manipulation of cupsd.conf by a local attacker resulting in limited reads of arbitrary files as root
https://notcve.org/view.php?id=CVE-2018-4181
In macOS High Sierra before 10.13.5, an issue existed in CUPS. This issue was addressed with improved access restrictions. En macOS High Sierra en versiones anteriores a la 10.13.5, existía un problema en CUPS. Este problema se abordó mediante la mejora de las restricciones de acceso. • https://lists.debian.org/debian-lts-announce/2018/07/msg00014.html https://security.gentoo.org/glsa/201908-08 https://support.apple.com/HT208849 https://usn.ubuntu.com/3713-1 https://www.debian.org/security/2018/dsa-4243 https://access.redhat.com/security/cve/CVE-2018-4181 https://bugzilla.redhat.com/show_bug.cgi?id=1607291 • CWE-266: Incorrect Privilege Assignment •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2018-4289
https://notcve.org/view.php?id=CVE-2018-4289
An information disclosure issue was addressed by removing the vulnerable code. This issue affected versions prior to macOS High Sierra 10.13.6. Se abordaron múltiples problemas de corrupción de memoria con una gestión de memoria mejorada. Este problema afectaba a macOS High Sierra en versiones anteriores a la 10.13.6. • https://support.apple.com/kb/HT208937 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2018-4285
https://notcve.org/view.php?id=CVE-2018-4285
A type confusion issue was addressed with improved memory handling. This issue affected versions prior to macOS High Sierra 10.13.6. Un problema de confusión de tipo se abordó con una gestión de memoria mejorada. Este problema afectaba a macOS High Sierra en versiones anteriores a la 10.13.6. • https://support.apple.com/kb/HT208937 • CWE-704: Incorrect Type Conversion or Cast •
CVSS: 6.3EPSS: 0%CPEs: 1EXPL: 0CVE-2018-4283 – Apple macOS IOGraphics IDState Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2018-4283
An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue affected versions prior to macOS High Sierra 10.13.6. Existía un problema de lectura fuera de límites que conducía a la divulgación de memoria del kernel. Este problema se abordó con una validación de entradas mejorada. • https://support.apple.com/kb/HT208937 • CWE-125: Out-of-bounds Read •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2018-4268 – Apple macOS APFS methodVolumeCreate Use-After-Free Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2018-4268
A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to macOS High Sierra 10.13.6. Un problema de corrupción de memoria se abordó con una gestión de memoria mejorada. Este problema afectaba a macOS High Sierra en versiones anteriores a la 10.13.6. This vulnerability allows local attackers to escalate privileges on vulnerable installations of Apple macOS. • https://support.apple.com/kb/HT208937 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •