CVE-2018-4179: Infoleak
Local Authentication. There was an issue with the handling of smartcard PINs. This issue was addressed with additional logic.
Other sources
In macOS High Sierra before 10.13.4, there was an issue with the handling of smartcard PINs. This issue was addressed with additional logic.
Credit
Affected Software
Event History
Peer vulnerabilities
Found alongside the following vulnerabilities.
- CVE-2018-4170
- CVE-2018-4105
- CVE-2018-4112
- CVE-2018-4166
- CVE-2018-4155
- CVE-2018-4158
- CVE-2018-4142
- CVE-2017-13890
- CVE-2017-8816
- CVE-2018-4176
- CVE-2018-4108
- CVE-2017-13080
- CVE-2018-4167
- CVE-2018-4151
- CVE-2018-4132
- CVE-2018-4135
- CVE-2018-4150
- CVE-2018-4104
- CVE-2018-4143
- CVE-2018-4136
- CVE-2018-4160
- CVE-2018-4185
- CVE-2018-4139
- CVE-2018-4175
- CVE-2017-15412
- CVE-2018-4187
- CVE-2018-4179
- CVE-2018-4111
- CVE-2018-4174
- CVE-2018-4152
- CVE-2017-7151
- CVE-2018-4138
- CVE-2018-4107
- CVE-2018-4156
- CVE-2018-4157
- CVE-2018-4298
- CVE-2018-4144
- CVE-2017-13911
- CVE-2018-4173
- CVE-2018-4154
- CVE-2018-4115
- CVE-2018-4106
- CVE-2018-4131
Frequently Asked Questions
What is CVE-2018-4179?
CVE-2018-4179 is a vulnerability in macOS High Sierra that involves the handling of smartcard PINs.
How does CVE-2018-4179 impact Mac users?
CVE-2018-4179 can allow an attacker to bypass local authentication and gain unauthorized access to a Mac system.
What is the severity of CVE-2018-4179?
CVE-2018-4179 has a severity score of 5.5, which is considered medium.
Which versions of macOS High Sierra are affected by CVE-2018-4179?
CVE-2018-4179 affects macOS High Sierra versions up to and including 10.13.4.
How can I fix CVE-2018-4179?
To fix CVE-2018-4179, you should update your macOS High Sierra to version 10.13.5 or later, as it includes the necessary fixes.