Apple Macos Mojave vulnerabilities

CVE-2018-4332 [CRITICAL] CVE-2018-4332: macOS Mojave 10.14 Apple Security Update: About the security content of macOS Mojave 10.14 Product: macOS Mojave Version: 10.14 CVE: CVE-2018-4332 Component: Heimdal Impact: An application may be able to execute arbitrary code with system privileges Description: A memory corruption issue was addressed with improved memory handling.

CVE-2018-4310 [CRITICAL] CVE-2018-4310: macOS Mojave 10.14 Apple Security Update: About the security content of macOS Mojave 10.14 Product: macOS Mojave Version: 10.14 CVE: CVE-2018-4310 Component: MediaRemote Impact: A sandboxed process may be able to circumvent sandbox restrictions Description: An access issue was addressed with additional sandbox restrictions.

CVE-2015-5334 [CRITICAL] CVE-2015-5334: macOS Mojave 10.14 Apple Security Update: About the security content of macOS Mojave 10.14 Product: macOS Mojave Version: 10.14 CVE: CVE-2015-5334 Component: CVE-2015-5334

CVE-2018-4295 [CRITICAL] CVE-2018-4295: macOS Mojave 10.14 Apple Security Update: About the security content of macOS Mojave 10.14 Product: macOS Mojave Version: 10.14 CVE: CVE-2018-4295 Component: Bluetooth Impact: An attacker in a privileged network position may be able to intercept Bluetooth traffic Description: An input validation issue existed in Bluetooth. This issue was addressed with improved input validation.

CVE-2018-4296 [CRITICAL] CVE-2018-4296: macOS Mojave 10.14 Apple Security Update: About the security content of macOS Mojave 10.14 Product: macOS Mojave Version: 10.14 CVE: CVE-2018-4296 Component: DiskArbitration Impact: A malicious application may be able to modify contents of the EFI system partition and execute arbitrary code with kernel privileges if secure boot is not enabled Description: A permissions issue existed in DiskArbitration. This was addressed with additional ownership checks.

CVE-2018-4353 [CRITICAL] CVE-2018-4353: macOS Mojave 10.14 Apple Security Update: About the security content of macOS Mojave 10.14 Product: macOS Mojave Version: 10.14 CVE: CVE-2018-4353 Component: Application Firewall Impact: A sandboxed process may be able to circumvent sandbox restrictions Description: A configuration issue was addressed with additional restrictions.

CVE-2019-8643 [CRITICAL] CVE-2019-8643: macOS Mojave 10.14 Apple Security Update: About the security content of macOS Mojave 10.14 Product: macOS Mojave Version: 10.14 CVE: CVE-2019-8643 Component: DiskArbitration Impact: A malicious application may be able to modify contents of the EFI system partition and execute arbitrary code with kernel privileges if secure boot is not enabled Description: A permissions issue existed in DiskArbitration. This was addressed with additional ownership checks.

CVE-2018-4331 [CRITICAL] CVE-2018-4331: macOS Mojave 10.14 Apple Security Update: About the security content of macOS Mojave 10.14 Product: macOS Mojave Version: 10.14 CVE: CVE-2018-4331 Component: Heimdal Impact: An application may be able to execute arbitrary code with system privileges Description: A memory corruption issue was addressed with improved memory handling.

CVE-2018-4407 [HIGH] CVE-2018-4407: macOS Mojave 10.14 Apple Security Update: About the security content of macOS Mojave 10.14 Product: macOS Mojave Version: 10.14 CVE: CVE-2018-4407 Component: Kernel Impact: An attacker in a privileged network position may be able to execute arbitrary code Description: A memory corruption issue was addressed with improved validation.

CVE-2018-4126 [HIGH] CVE-2018-4126: macOS Mojave 10.14 Apple Security Update: About the security content of macOS Mojave 10.14 Product: macOS Mojave Version: 10.14 CVE: CVE-2018-4126 Component: CFNetwork Impact: An application may be able to execute arbitrary code with system privileges Description: A memory corruption issue was addressed with improved memory handling.

CVE-2018-4340 [HIGH] CVE-2018-4340: macOS Mojave 10.14 Apple Security Update: About the security content of macOS Mojave 10.14 Product: macOS Mojave Version: 10.14 CVE: CVE-2018-4340 Component: Kernel Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved memory handling.

CVE-2018-4383 [HIGH] CVE-2018-4383: macOS Mojave 10.14 Apple Security Update: About the security content of macOS Mojave 10.14 Product: macOS Mojave Version: 10.14 CVE: CVE-2018-4383 Component: IOKit Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved state management.

CVE-2018-4408 [HIGH] CVE-2018-4408: macOS Mojave 10.14 Apple Security Update: About the security content of macOS Mojave 10.14 Product: macOS Mojave Version: 10.14 CVE: CVE-2018-4408 Component: IOHIDFamily Impact: A malicious application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved input validation.

CVE-2018-4411 [HIGH] CVE-2018-4411: macOS Mojave 10.14 Apple Security Update: About the security content of macOS Mojave 10.14 Product: macOS Mojave Version: 10.14 CVE: CVE-2018-4411 Component: ATS Impact: A malicious application may be able to elevate privileges Description: A memory corruption issue was addressed with improved input validation.

CVE-2018-4344 [HIGH] CVE-2018-4344: macOS Mojave 10.14 Apple Security Update: About the security content of macOS Mojave 10.14 Product: macOS Mojave Version: 10.14 CVE: CVE-2018-4344 Component: Kernel Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved memory handling.

CVE-2018-4203 [HIGH] CVE-2018-4203: macOS Mojave 10.14 Apple Security Update: About the security content of macOS Mojave 10.14 Product: macOS Mojave Version: 10.14 CVE: CVE-2018-4203 Component: Symptom Framework Impact: An application may be able to read restricted memory Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2018-4334 [HIGH] CVE-2018-4334: macOS Mojave 10.14 Apple Security Update: About the security content of macOS Mojave 10.14 Product: macOS Mojave Version: 10.14 CVE: CVE-2018-4334 Component: Intel Graphics Driver Impact: An application may be able to execute arbitrary code with system privileges Description: A memory corruption issue was addressed with improved memory handling.

CVE-2018-4426 [HIGH] CVE-2018-4426: macOS Mojave 10.14 Apple Security Update: About the security content of macOS Mojave 10.14 Product: macOS Mojave Version: 10.14 CVE: CVE-2018-4426 Component: Grand Central Dispatch Impact: An application may be able to execute arbitrary code with system privileges Description: A memory corruption issue was addressed with improved memory handling.

CVE-2018-4412 [HIGH] CVE-2018-4412: macOS Mojave 10.14 Apple Security Update: About the security content of macOS Mojave 10.14 Product: macOS Mojave Version: 10.14 CVE: CVE-2018-4412 Component: CoreFoundation Impact: A malicious application may be able to elevate privileges Description: A memory corruption issue was addressed with improved input validation.

CVE-2018-4336 [HIGH] CVE-2018-4336: macOS Mojave 10.14 Apple Security Update: About the security content of macOS Mojave 10.14 Product: macOS Mojave Version: 10.14 CVE: CVE-2018-4336 Component: Kernel Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved memory handling.