CVE-2018-4182 : In macOS High Sierra before 10.13.5, an access issue was addressed with additional sandbox restrictions on CUPS.

In macOS High Sierra before 10.13.5, an access issue was addressed with additional sandbox restrictions on CUPS.

Published 2019-01-11 18:29:01

Updated 2019-10-03 00:03:26

Source Apple Inc.

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2018-4182

Probability of exploitation activity in the next 30 days: 0.05%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 18 % EPSS Score History EPSS FAQ

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.2	HIGH	AV:L/AC:L/Au:N/C:C/I:C/A:C	3.9	10.0	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete
8.2	HIGH	CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H	1.5	6.0	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: High User Interaction: None Scope: Changed Confidentiality: High Integrity: High Availability: High

https://www.debian.org/security/2018/dsa-4243

Debian -- Security Information -- DSA-4243-1 cups
Third Party Advisory

CVEs referencing this url
https://support.apple.com/HT208849

About the security content of macOS High Sierra 10.13.5, Security Update 2018-003 Sierra, Security Update 2018-003 El Capitan - Apple Support
Vendor Advisory

CVEs referencing this url
https://access.redhat.com/security/cve/cve-2018-4182

CVE-2018-4182 - Red Hat Customer Portal
Third Party Advisory
https://security.gentoo.org/glsa/201908-08

CUPS: Multiple vulnerabilities (GLSA 201908-08) — Gentoo security

CVEs referencing this url

Apple » Mac Os X
Versions before (<) 10.13.5
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
Matching versions