Main Vulnerability Database Exploits ID:1536 - Exploit for Privilege escalation in macOS - CVE-2018-4237

ID:1536 - Exploit for Privilege escalation in macOS - CVE-2018-4237

Published: March 18, 2020

Vulnerability identifier: #VU13157

Vulnerability risk: Low

CVE-ID: CVE-2018-4237

CWE-ID: CWE-264

Exploitation vector: Local access

Vulnerable software:
macOS

Link to public exploit:

https://www.rapid7.com/db/modules/exploit/osx/local/libxpc_mitm_ssudo

Vulnerability description

The vulnerability allows a local attacker to gain elevated privileges on the target system.

The vulnerability exists due to a logic error in the libxpc component. A local attacker can run a specially crafted application and gain elevated privileges.

Remediation

Update to version 10.13.4.

ID:1536 - Exploit for Privilege escalation in macOS - CVE-2018-4237

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human