CVE-2019-8702

This issue was addressed with a new entitlement. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra, iOS 12.4, tvOS 12.4. A local user may be able to read a persistent account identifier.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
appleCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 19%
VendorProductVersion
appleiphone_os
𝑥
< 12.4
applemac_os_x
𝑥
< 10.14.6
applemac_os_x
10.12 ≤
𝑥
< 10.12.6
applemac_os_x
10.13 ≤
𝑥
< 10.13.6
applemac_os_x
10.12.6
applemac_os_x
10.12.6:security_update_2017-001
applemac_os_x
10.12.6:security_update_2017-002
applemac_os_x
10.12.6:security_update_2018-001
applemac_os_x
10.12.6:security_update_2018-002
applemac_os_x
10.12.6:security_update_2018-003
applemac_os_x
10.12.6:security_update_2018-004
applemac_os_x
10.12.6:security_update_2018-005
applemac_os_x
10.12.6:security_update_2018-006
applemac_os_x
10.12.6:security_update_2019-001
applemac_os_x
10.12.6:security_update_2019-002
applemac_os_x
10.12.6:security_update_2019-003
applemac_os_x
10.13.6
applemac_os_x
10.13.6:security_update_2018-002
applemac_os_x
10.13.6:security_update_2018-003
applemac_os_x
10.13.6:security_update_2019-001
applemac_os_x
10.13.6:security_update_2019-002
applemac_os_x
10.13.6:security_update_2019-003
appletvos
𝑥
< 12.4
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://support.apple.com/en-us/HT210346
https://support.apple.com/en-us/HT210348
https://support.apple.com/en-us/HT210351
https://support.apple.com/en-us/HT210346
https://support.apple.com/en-us/HT210348
https://support.apple.com/en-us/HT210351