Vulnerabilities > CVE-2019-8770 - Unspecified vulnerability in Apple mac OS X

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

apple

nessus

NVD

Published: 2019-12-18

Updated: 2020-08-24

Summary

The issue was addressed with improved permissions logic. This issue is fixed in macOS Catalina 10.15. A malicious application may be able to access recent documents.

Vulnerable Configurations

Part	Description	Count
OS	Apple Apple MAC OS X - Apple MAC OS X 10.0 Apple MAC OS X 10.0.0 Apple MAC OS X 10.0.1 Apple MAC OS X 10.0.2 Apple MAC OS X 10.0.3 Apple MAC OS X 10.0.4 Apple MAC OS X 10.1 Apple MAC OS X 10.1.0 Apple MAC OS X 10.1.1 Apple MAC OS X 10.1.2 Apple MAC OS X 10.1.3 Apple MAC OS X 10.1.4 Apple MAC OS X 10.1.5 Apple MAC OS X 10.2 Apple MAC OS X 10.2.0 Apple MAC OS X 10.2.1 Apple MAC OS X 10.2.2 Apple MAC OS X 10.2.3 Apple MAC OS X 10.2.4 Apple MAC OS X 10.2.5 Apple MAC OS X 10.2.6 Apple MAC OS X 10.2.7 Apple MAC OS X 10.2.8 Apple MAC OS X 10.3 Apple MAC OS X 10.3.0 Apple MAC OS X 10.3.1 Apple MAC OS X 10.3.2 Apple MAC OS X 10.3.3 Apple MAC OS X 10.3.4 Apple MAC OS X 10.3.5 Apple MAC OS X 10.3.6 Apple MAC OS X 10.3.7 Apple MAC OS X 10.3.8 Apple MAC OS X 10.3.9 Apple MAC OS X 10.4 Apple MAC OS X 10.4.0 Apple MAC OS X 10.4.1 Apple MAC OS X 10.4.2 Apple MAC OS X 10.4.3 Apple MAC OS X 10.4.4 Apple MAC OS X 10.4.5 Apple MAC OS X 10.4.6 Apple MAC OS X 10.4.7 Apple MAC OS X 10.4.8 Apple MAC OS X 10.4.9 Apple MAC OS X 10.4.10 Apple MAC OS X 10.4.11 Apple MAC OS X 10.5 Apple MAC OS X 10.5.0 Apple MAC OS X 10.5.1 Apple MAC OS X 10.5.2 Apple MAC OS X 10.5.3 Apple MAC OS X 10.5.4 Apple MAC OS X 10.5.5 Apple MAC OS X 10.5.6 Apple MAC OS X 10.5.7 Apple MAC OS X 10.5.8 Apple MAC OS X 10.6.0 Apple MAC OS X 10.6.1 Apple MAC OS X 10.6.2 Apple MAC OS X 10.6.3 Apple MAC OS X 10.6.4 Apple MAC OS X 10.6.5 Apple MAC OS X 10.6.6 Apple MAC OS X 10.6.7 Apple MAC OS X 10.6.8 Apple MAC OS X 10.7.0 Apple MAC OS X 10.7.1 Apple MAC OS X 10.7.2 Apple MAC OS X 10.7.3 Apple MAC OS X 10.7.4 Apple MAC OS X 10.7.5 Apple MAC OS X 10.8.0 Apple MAC OS X 10.8.1 Apple MAC OS X 10.8.2 Apple MAC OS X 10.8.3 Apple MAC OS X 10.8.4 Apple MAC OS X 10.8.5 Apple MAC OS X 10.9 Apple MAC OS X 10.9.1 Apple MAC OS X 10.9.2 Apple MAC OS X 10.9.3 Apple MAC OS X 10.9.4 Apple MAC OS X 10.9.5 Apple MAC OS X 10.10.0 Apple MAC OS X 10.10.1 Apple MAC OS X 10.10.2 Apple MAC OS X 10.10.3 Apple MAC OS X 10.10.4 Apple MAC OS X 10.10.5 Apple MAC OS X 10.11.0 Apple MAC OS X 10.11.1 Apple MAC OS X 10.11.2 Apple MAC OS X 10.11.3 Apple MAC OS X 10.11.4 Apple MAC OS X 10.11.5 Apple MAC OS X 10.11.6 Apple MAC OS X 10.12 Apple MAC OS X 10.12.0 Apple MAC OS X 10.12.1 Apple MAC OS X 10.12.2 Apple MAC OS X 10.12.3 Apple MAC OS X 10.12.4 Apple MAC OS X 10.12.5 Apple MAC OS X 10.12.6 Apple MAC OS X 10.13 Apple MAC OS X 10.13.0 Apple MAC OS X 10.13.1 Apple MAC OS X 10.13.2 Apple MAC OS X 10.13.3 Apple MAC OS X 10.13.4 Apple MAC OS X 10.13.5 Apple MAC OS X 10.13.6 Apple MAC OS X 10.14 Apple MAC OS X 10.14.0 Apple MAC OS X 10.14.1 Apple MAC OS X 10.14.2 Apple MAC OS X 10.14.3 Apple MAC OS X 10.14.4 Apple MAC OS X 10.14.5 Apple MAC OS X 10.14.6	124

Nessus

NASL family	MacOS X Local Security Checks
NASL id	MACOS_HT210634.NASL
description	The remote host is running a version of macOS / Mac OS X that is prior to 10.15. It is, therefore, affected by multiple vulnerabilities. - An application may be able to execute arbitrary code with kernel privileges (CVE-2019-8748) - Multiple issues in PHP (CVE-2019-11041, CVE-2019-11042) - Processing a maliciously crafted movie may result in the disclosure of process memory (CVE-2019-8705) - The
last seen	2020-06-01
modified	2020-06-02
plugin id	130057
published	2019-10-18
reporter	This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/130057
title	macOS < 10.15 Multiple Vulnerabilities
code	# # (C) Tenable Network Security, Inc. # include('compat.inc'); if (description) { script_id(130057); script_version("1.7"); script_cvs_date("Date: 2020/01/07"); script_cve_id( "CVE-2019-8701", "CVE-2019-8705", "CVE-2019-8717", "CVE-2019-8730", "CVE-2019-8745", "CVE-2019-8748", "CVE-2019-8755", "CVE-2019-8757", "CVE-2019-8758", "CVE-2019-8768", "CVE-2019-8769", "CVE-2019-8770", "CVE-2019-8772", "CVE-2019-8781", "CVE-2019-11041", "CVE-2019-11042" ); script_xref(name:"APPLE-SA", value:"HT210634"); script_name(english:"macOS < 10.15 Multiple Vulnerabilities"); script_summary(english:"Checks the version of macOS."); script_set_attribute(attribute:"synopsis", value: "The remote host is missing a macOS update that fixes multiple vulnerabilities."); script_set_attribute(attribute:"description", value: "The remote host is running a version of macOS / Mac OS X that is prior to 10.15. It is, therefore, affected by multiple vulnerabilities. - An application may be able to execute arbitrary code with kernel privileges (CVE-2019-8748) - Multiple issues in PHP (CVE-2019-11041, CVE-2019-11042) - Processing a maliciously crafted movie may result in the disclosure of process memory (CVE-2019-8705) - The 'Share Mac Analytics' setting may not be disabled when a user deselects the switch to share analytics (CVE-2019-8757) - An application may be able to execute arbitrary code with system privileges (CVE-2019-8758) - A malicious application may be able to determine kernel memory layout (CVE-2019-8755) - An application may be able to execute arbitrary code with kernel privileges (CVE-2019-8717) - An application may be able to execute arbitrary code with kernel privileges (CVE-2019-8781) - A local user may be able to view a user's locked notes (CVE-2019-8730) - An attacker may be able to exfiltrate the contents of an encrypted PDF (CVE-2019-8772) - A malicious application may be able to access recent documents (CVE-2019-8770) - An application may be able to execute arbitrary code with system privileges (CVE-2019-8701) - Processing a maliciously crafted text file may lead to arbitrary code execution (CVE-2019-8745) - Visiting a maliciously crafted website may reveal browsing history (CVE-2019-8769) - A user may be unable to delete browsing history items (CVE-2019-8768) Note that Nessus has not tested for this issue but has instead relied only on the operating system's self-reported version number."); script_set_attribute(attribute:"see_also", value:"https://support.apple.com/en-us/HT210634"); script_set_attribute(attribute:"solution", value: "Upgrade to macOS 10.15 or later."); script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C"); script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C"); script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"); script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C"); script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-8781"); script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available"); script_set_attribute(attribute:"exploit_available", value:"true"); script_set_attribute(attribute:"vuln_publication_date", value:"2019/10/07"); script_set_attribute(attribute:"patch_publication_date", value:"2019/10/07"); script_set_attribute(attribute:"plugin_publication_date", value:"2019/10/18"); script_set_attribute(attribute:"potential_vulnerability", value:"true"); script_set_attribute(attribute:"plugin_type", value:"combined"); script_set_attribute(attribute:"cpe", value:"cpe:/o:apple:mac_os_x"); script_set_attribute(attribute:"cpe", value:"cpe:/o:apple:macos"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_family(english:"MacOS X Local Security Checks"); script_copyright(english:"This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof."); script_dependencies("ssh_get_info.nasl", "os_fingerprint.nasl"); script_require_keys("Settings/ParanoidReport"); script_require_ports("Host/MacOSX/Version", "Host/OS"); exit(0); } include('lists.inc'); include('vcf.inc'); include('vcf_extras_apple.inc'); app_info = vcf::apple::macos::get_app_info(); if (report_paranoia < 2) audit(AUDIT_PARANOID); # Build numbers from: # https://en.wikipedia.org/wiki/MacOS#Release_history -> # https://en.wikipedia.org/wiki/MacOS_Sierra # https://en.wikipedia.org/wiki/MacOS_High_Sierra # https://en.wikipedia.org/wiki/MacOS_Mojave # https://en.wikipedia.org/wiki/MacOS_Catalina constraints = [ { 'min_version': '10.12', 'max_version': '10.15.0', 'fixed_build': '19A583', 'fixed_display': '10.15 Build 19A583' } ]; vcf::apple::macos::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_HOLE);

References

https://support.apple.com/HT210634