Language:
https://support.apple.com/en-us/HT209600
Severity: Critical
ID: 123130
File Name: macos_SecUpd_10_13_6_2019-002.nasl
Version: 1.13
Type: local
Agent: macosx
Family: MacOS X Local Security Checks
Published: 3/27/2019
Updated: 5/28/2024
Supported Sensors: Nessus Agent, Nessus
Risk Factor: High
Score: 8.9
Risk Factor: High
Base Score: 9.4
Temporal Score: 8.2
Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:C/A:C
CVSS Score Source: CVE-2019-8527
Risk Factor: Critical
Base Score: 9.8
Temporal Score: 9.4
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C
CVSS Score Source: CVE-2018-18311
CPE: cpe:/o:apple:macos:10.13, cpe:/o:apple:mac_os_x:10.13
Required KB Items: Host/local_checks_enabled, Host/MacOSX/Version, Host/MacOSX/packages/boms
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 3/25/2019
Vulnerability Publication Date: 3/25/2019
CISA Known Exploited Vulnerability Due Dates: 5/8/2023
Metasploit (Mac OS X TimeMachine (tmdiagnose) Command Injection Privilege Escalation)
CVE: CVE-2018-12015, CVE-2018-18311, CVE-2018-18313, CVE-2019-6207, CVE-2019-8504, CVE-2019-8510, CVE-2019-8513, CVE-2019-8520, CVE-2019-8521, CVE-2019-8522, CVE-2019-8526, CVE-2019-8527, CVE-2019-8529, CVE-2019-8555, CVE-2019-8561, CVE-2019-8564
APPLE-SA: APPLE-SA-2019-3-25-2