Access Control Issue in CUPS Affects macOS High Sierra
CVE-2018-4181

5.5MEDIUM

Key Information:

Vendor
Apple
Status
Mac Os X
Vendor
CVE Published:
11 January 2019

Summary

In Apple’s macOS High Sierra versions prior to 10.13.5, a vulnerability was identified in the CUPS (Common UNIX Printing System) that could potentially allow unauthorized access. The issue stems from inadequate access restrictions, which could expose sensitive functionalities of the CUPS to malicious users. The problem has been addressed through enhanced access controls in the updated versions, making it imperative for users to apply the latest security updates to safeguard their systems.

References

https://usn.ubuntu.com/3713-1/
vendor-advisoryx_refsource_UBUNTU
https://www.debian.org/security/2018/dsa-4243
vendor-advisoryx_refsource_DEBIAN
https://support.apple.com/HT208849
x_refsource_CONFIRM

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.