Access Control Flaw in CUPS Affects macOS High Sierra by Apple
CVE-2018-4180

7.8HIGH

Key Information:

Vendor

Apple
Status
Mac Os X
Vendor
CVE Published:
11 January 2019

What is CVE-2018-4180?

In macOS High Sierra, prior to version 10.13.5, an access control vulnerability was found in the Common Unix Printing System (CUPS). This flaw could potentially allow unauthorized access, leading to exposure of sensitive information. Apple addressed this issue by implementing stricter access restrictions to enhance system security and protect users from potential exploitation.

References

https://usn.ubuntu.com/3713-1/
vendor-advisoryx_refsource_UBUNTU
https://www.debian.org/security/2018/dsa-4243
vendor-advisoryx_refsource_DEBIAN
https://support.apple.com/HT208849
x_refsource_CONFIRM

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.