Lucene search
TalosCVELIST:CVE-2018-4036HistoryJan 10, 2019 - 3:00 p.m.
CVE-2018-4036
2019-01-1015:00:00
talos
www.cve.org
3
CVSS3
7.1
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
EPSS
0
Percentile
5.1%
The CleanMyMac X software contains an exploitable privilege escalation vulnerability due to improper input validation. An attacker with local access could use this vulnerability to modify the running kernel extensions on the system.
CNA Affected
[
{
"product": "Clean My Mac",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Clean My Mac X 4.04"
}
]
}
]Related
prion
prion
Privilege escalation
2019-01-10 15:29:00
nvd
nvd
CVE-2018-4036
2019-01-10 15:29:00
cve
cve
CVE-2018-4036
2019-01-10 15:29:00
talos
talos
CleanMyMac X removeKextAtPath privilege escalation vulnerability
2019-01-02 00:00:00
threatpost
threatpost
A Dozen Flaws in Popular Mac Clean-Up Software Allow Local Root Access
2019-01-03 21:50:22
talosblog
talosblog
CVSS3
7.1
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
EPSS
0
Percentile
5.1%
Related for CVELIST:CVE-2018-4036