Arbitrary Code Execution and Information Disclosure Vulnerability in macOS Accessibility Framework

Arbitrary Code Execution and Information Disclosure Vulnerability in macOS Accessibility Framework

CVE-2018-4196 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

An issue was discovered in certain Apple products. macOS before 10.13.5 is affected. The issue involves the "Accessibility Framework" component. It allows attackers to execute arbitrary code in a privileged context or obtain sensitive information via a crafted app.

Learn more about our Cis Benchmark Audit For Apple Macos.