PT-2019-19117 · Apple · Apple Macos
Phoenhex
+1
·
Publicado
2019-05-30
·
Atualizado
2019-12-23
·
CVE-2019-8606
CVSS v3.1
7.0
Alta
| Vetor | AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Apple macOS versions prior to 10.14.5
Description
A validation issue existed in the handling of symlinks, which has been addressed with improved validation. This could have allowed a local user to load unsigned kernel extensions, potentially leading to privilege escalation.
Recommendations
For versions prior to 10.14.5, update to macOS Mojave 10.14.5 to resolve the issue.
Correção
Race Condition
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Apple Macos