Apple MacOSX Security Updates(HT210348)-02

Published: 2019-07-23 07:09:20
CVE Author: NIST National Vulnerability Database (NVD)

CVSS Base Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Summary:
This host is installed with Apple Mac OS X and is prone to multiple vulnerabilities.

Detection Method:
Checks if a vulnerable version is present on the target host.

Technical Details:
Multiple flaws exists due to, - A logic issue existed in the handling of synchronous page loads. - A memory corruption issue due to improper input validation. - A use after free issue due to improper memory management. - An inconsistent user interface issue due to improper state management. - Multiple memory corruption issues due to improper memory handling. - A validation issue was addressed with insufficient input sanitization. - A logic issue existed in the handling of document loads. - An out-of-bounds read error due to improper input validation. - A logic issue due to improper state management.

Impact:
Successful exploitation allow attackers to cause arbitrary code execution, conduct cross site scripting, spoofing attacks, leak sensitive information and cause unexpected application termination.

Affected Versions:
Apple Mac OS X versions 10.14.x through 10.14.5

Recommendations:
Upgrade to Apple Mac OS X 10.14.6 or later. Please see the references for more information.

Solution Type:
Vendor Patch

Detection Type:
Linux Distribution Package

NIST (National Institute of Standards and Technology) NVD (National Vulnerability Database)

https://nvd.nist.gov/vuln/detail/CVE-2019-8649
https://nvd.nist.gov/vuln/detail/CVE-2019-8648
https://nvd.nist.gov/vuln/detail/CVE-2019-8663
https://nvd.nist.gov/vuln/detail/CVE-2019-8661
https://nvd.nist.gov/vuln/detail/CVE-2019-8660
https://nvd.nist.gov/vuln/detail/CVE-2019-8667
https://nvd.nist.gov/vuln/detail/CVE-2019-8644
https://nvd.nist.gov/vuln/detail/CVE-2019-8666
https://nvd.nist.gov/vuln/detail/CVE-2019-8669
https://nvd.nist.gov/vuln/detail/CVE-2019-8671
https://nvd.nist.gov/vuln/detail/CVE-2019-8672
https://nvd.nist.gov/vuln/detail/CVE-2019-8673
https://nvd.nist.gov/vuln/detail/CVE-2019-8676
https://nvd.nist.gov/vuln/detail/CVE-2019-8677
https://nvd.nist.gov/vuln/detail/CVE-2019-8678
https://nvd.nist.gov/vuln/detail/CVE-2019-8679
https://nvd.nist.gov/vuln/detail/CVE-2019-8680
https://nvd.nist.gov/vuln/detail/CVE-2019-8681
https://nvd.nist.gov/vuln/detail/CVE-2019-8683
https://nvd.nist.gov/vuln/detail/CVE-2019-8684
https://nvd.nist.gov/vuln/detail/CVE-2019-8685
https://nvd.nist.gov/vuln/detail/CVE-2019-8686
https://nvd.nist.gov/vuln/detail/CVE-2019-8687
https://nvd.nist.gov/vuln/detail/CVE-2019-8688
https://nvd.nist.gov/vuln/detail/CVE-2019-8689
https://nvd.nist.gov/vuln/detail/CVE-2019-8693
https://nvd.nist.gov/vuln/detail/CVE-2019-8690
https://nvd.nist.gov/vuln/detail/CVE-2019-8694
https://nvd.nist.gov/vuln/detail/CVE-2019-8695
https://nvd.nist.gov/vuln/detail/CVE-2019-8646
https://nvd.nist.gov/vuln/detail/CVE-2019-8670
https://nvd.nist.gov/vuln/detail/CVE-2019-8658
https://nvd.nist.gov/vuln/detail/CVE-2019-8697

References:

https://support.apple.com/en-us/HT210348
https://www.apple.com/in/macos/

Search
Severity
High
CVSS Score
10.0

You never have to pay for a vulnerability scanning and management software again.

Tired of paying a subscription 'per asset' or 'per IP'? Well you can officially cancel your current subscription. Mageni provides a free, open source and enterprise-ready vulnerability scanning and management platform which helps you to find, prioritize, remediate and manage your vulnerabilities. It is free and always will be.