CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 1CVE-2018-4054
https://notcve.org/view.php?id=CVE-2018-4054
A local privilege escalation vulnerability exists in the install helper tool of the Mac OS X version of Pixar Renderman, version 22.2.0. A user with local access can use this vulnerability to escalate their privileges to root. An attacker would need local access to the machine to successfully exploit this flaw. Existe una vulnerabilidad de escalado de privilegios local en la herramienta de instalación de apoyo de la versión 22.2.0 de Pixar Renderman de Mac OS X. Un usuario con acceso local puede aprovechar esta vulnerabilidad para escalar sus privilegios a root. • https://talosintelligence.com/vulnerability_reports/TALOS-2018-0728 • CWE-20: Improper Input Validation •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 1CVE-2019-5015
https://notcve.org/view.php?id=CVE-2019-5015
A local privilege escalation vulnerability exists in the Mac OS X version of Pixar Renderman 22.3.0's Install Helper helper tool. A user with local access can use this vulnerability to escalate their privileges to root. An attacker would need local access to the machine for a successful exploit. Existe una vulnerabilidad de escalado de privilegios locales en la versión para Mac OS X de la herramienta de instalación de Pixar Renderman 22.3.0. Un usuario con acceso local puede aprovechar esta vulnerabilidad para escalar sus privilegios a root. • http://www.securityfocus.com/bid/107436 https://talosintelligence.com/vulnerability_reports/TALOS-2019-0773 • CWE-749: Exposed Dangerous Method or Function •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 1CVE-2018-4055
https://notcve.org/view.php?id=CVE-2018-4055
A local privilege escalation vulnerability exists in the install helper tool of the Mac OS X version of Pixar Renderman, version 22.2.0. A user with local access can use this vulnerability to read any root file from the file system. An attacker would need local access to the machine to successfully exploit this flaw. Existe una vulnerabilidad de escalado de privilegios local en la herramienta de instalación de apoyo de la versión 22.2.0 de Pixar Renderman de Mac OS X. Un usuario con acceso local puede utilizar esta vulnerabilidad para leer cualquier archivo root desde el sistema de archivos. • https://talosintelligence.com/vulnerability_reports/TALOS-2018-0729 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2018-3840
https://notcve.org/view.php?id=CVE-2018-3840
A denial-of-service vulnerability exists in the Pixar Renderman IT Display Service 21.6 (0x67). The vulnerability is present in the parsing of a network packet without proper validation of the packet. The data read by the application is not validated, and its use can lead to a null pointer dereference. The IT application is opened by a user and then listens for a connection on port 4001. An attacker can deliver an attack once the application has been opened. • https://talosintelligence.com/vulnerability_reports/TALOS-2018-0523 • CWE-20: Improper Input Validation CWE-476: NULL Pointer Dereference •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2018-3841
https://notcve.org/view.php?id=CVE-2018-3841
A denial-of-service vulnerability exists in the Pixar Renderman IT Display Service 21.6 (0x69). The vulnerability is present in the parsing of a network packet without proper validation of the packet. The data read-in is not validated, and its use can lead to a null pointer dereference. The IT application is opened by a user and then listens for a connection on port 4001. An attacker can deliver an attack once the application has been opened. • https://talosintelligence.com/vulnerability_reports/TALOS-2018-0524 • CWE-476: NULL Pointer Dereference •