First published: Tue Oct 30 2018(Updated: )
Automator. This issue was addressed by removing additional entitlements.
Credit: Jeff Johnson underpassapp product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple Mac OS X | >=10.14<10.14.1 | |
Apple macOS Mojave | <10.14.1 | 10.14.1 |
Apple High Sierra | ||
Apple Sierra |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
The vulnerability ID is CVE-2018-4468.
The severity rating of CVE-2018-4468 is medium.
CVE-2018-4468 was fixed by removing additional entitlements in macOS Mojave 10.14.1, Security Update 2018-002 High Sierra, and Security Update 2018-005 Sierra.
macOS Mojave versions up to and excluding 10.14.1, High Sierra, Sierra, and earlier versions of Apple Mac OS X are affected by CVE-2018-4468.
A malicious application may be able to access restricted files.