CVE-2018-4219

HIGH

Apple <10.13.5 - Privilege Escalation

Title source: llm

Description

An issue was discovered in certain Apple products. macOS before 10.13.5 is affected. The issue involves the "ATS" component. It allows attackers to gain privileges via a crafted app that leverages type confusion.

References (2)

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1041027

[Vendor Advisory] https://support.apple.com/HT208849

Scores

CVSS v3 7.8

EPSS 0.0029

EPSS Percentile 52.7%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE

CWE-704

Status published

Products (1)

apple/mac_os_x < 10.13.5

Published Jun 08, 2018

Tracked Since Feb 18, 2026