Eric Rafaloff

**Name of the Vulnerable Software and Affected Versions** macOS High Sierra versions prior to 10.13.5 **Description** The issue is related to the CUPS print server and involves improper handling of certain include directives, allowing an unprivileged user to read arbitrary files as a superuser. This enables an attacker to access confidential data. The problem was addressed by improving access restrictions. **Recommendations** For macOS High Sierra versions prior to 10.13.5, update to version 10.13.5 or later to resolve the issue. As a temporary workaround, consider restricting access to the CUPS service until the update is applied.

**Name of the Vulnerable Software and Affected Versions** macOS High Sierra versions prior to 10.13.5 **Description** An access issue was addressed with additional sandbox restrictions in macOS. **Recommendations** For macOS High Sierra versions prior to 10.13.5, update to version 10.13.5 or later to resolve the issue.