CVE-2018-4055: Input Validation
First published: Fri Mar 08 2019(Updated: )
A local privilege escalation vulnerability exists in the install helper tool of the Mac OS X version of Pixar Renderman, version 22.2.0. A user with local access can use this vulnerability to read any root file from the file system. An attacker would need local access to the machine to successfully exploit this flaw.
Credit: talos-cna@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Pixar Renderman | =22.2.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2018-4055?
The severity of CVE-2018-4055 is high (5.5).
How does the vulnerability in CVE-2018-4055 occur?
The vulnerability in CVE-2018-4055 occurs in the install helper tool of the Mac OS X version of Pixar Renderman, allowing a user with local access to read any root file from the file system.
What software is affected by CVE-2018-4055?
The software affected by CVE-2018-4055 is Pixar Renderman version 22.2.0 on Mac OS X.
How can an attacker exploit CVE-2018-4055?
To exploit CVE-2018-4055, an attacker would need local access to the machine.
Is there a fix available for CVE-2018-4055?
There is currently no information available about a fix for CVE-2018-4055.
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/tags
- agent/event
- agent/type
- agent/description
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- vendor/pixar
- canonical/pixar renderman
- version/pixar renderman/22.2.0