CVE-2018-4468: Medium severity macos mojave vulnerability

Q: What is the vulnerability ID of this issue?

The vulnerability ID is CVE-2018-4468.

Q: What is the severity rating of CVE-2018-4468?

The severity rating of CVE-2018-4468 is medium.

Q: How was CVE-2018-4468 fixed?

CVE-2018-4468 was fixed by removing additional entitlements in macOS Mojave 10.14.1, Security Update 2018-002 High Sierra, and Security Update 2018-005 Sierra.

Q: What software versions are affected by CVE-2018-4468?

macOS Mojave versions up to and excluding 10.14.1, High Sierra, Sierra, and earlier versions of Apple Mac OS X are affected by CVE-2018-4468.

Published Oct 30, 2018

Updated

Automator. This issue was addressed by removing additional entitlements.

Other sources

This issue was addressed by removing additional entitlements. This issue is fixed in macOS Mojave 10.14.1, Security Update 2018-002 High Sierra, Security Update 2018-005 Sierra. A malicious application may be able to access restricted files.

Credit

Jeff Johnson(underpassapp)

Affected Software

4 affected componentsFixes available

Apple macOS Mojave<10.14.1

10.14.1

Apple High Sierra

Apple Sierra

Apple iOS and macOS>=10.14<10.14.1

Event History

Oct 27, 2020

CVE Published

via MITRE·07:20 PM

Data Sourced

via MITRE·07:20 PM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

HT209193

Peer vulnerabilities

Found alongside the following vulnerabilities.

CVE-2018-4295
CVE-2018-4410
CVE-2018-4417
CVE-2017-12613
CVE-2017-12618
CVE-2018-4411
CVE-2018-4308
CVE-2018-4468
CVE-2018-4126
CVE-2018-4415
CVE-2018-4398
CVE-2018-4412
CVE-2018-4153
CVE-2018-4406
CVE-2018-4346
CVE-2018-4403
CVE-2018-4423
CVE-2018-3639
CVE-2018-4342
CVE-2018-4304
CVE-2018-4426
CVE-2018-4331
CVE-2018-3646
CVE-2018-4242
CVE-2018-4394
CVE-2018-4334
CVE-2018-4396
CVE-2018-4418
CVE-2018-4350
CVE-2018-4421
CVE-2018-4422
CVE-2018-4408
CVE-2018-4402
CVE-2018-4341
CVE-2018-4354
CVE-2018-4401
CVE-2018-4371
CVE-2018-4420
CVE-2018-4399
CVE-2018-4340
CVE-2018-4419
CVE-2018-4425
CVE-2018-4259
CVE-2018-4286
CVE-2018-4287
CVE-2018-4288
CVE-2018-4291
CVE-2018-4413
CVE-2018-4407
CVE-2018-4424
CVE-2018-4187
CVE-2018-4348
CVE-2018-4389
CVE-2018-4326
CVE-2018-4310
CVE-2018-3640
CVE-2018-4369
CVE-2018-6797
CVE-2017-0898
CVE-2017-10784
CVE-2017-14033
CVE-2017-14064
CVE-2017-17405
CVE-2017-17742
CVE-2018-6914
CVE-2018-8777
CVE-2018-8778
CVE-2018-8779
CVE-2018-8780
CVE-2018-4400
CVE-2018-4395
CVE-2018-4393
CVE-2018-4203
CVE-2018-4368

Frequently Asked Questions

What is the vulnerability ID of this issue?

The vulnerability ID is CVE-2018-4468.

What is the severity rating of CVE-2018-4468?

The severity rating of CVE-2018-4468 is medium.

How was CVE-2018-4468 fixed?

CVE-2018-4468 was fixed by removing additional entitlements in macOS Mojave 10.14.1, Security Update 2018-002 High Sierra, and Security Update 2018-005 Sierra.

What software versions are affected by CVE-2018-4468?