CVE-2019-8590

Vulnerability

A logic issue exists in the macOS Kernel prior to version 10.14.5. The bug is reachable from user space via an application that triggers the flawed code path. The affected versions are macOS Mojave 10.14.4 and earlier, as well as macOS High Sierra 10.13.6 and macOS Sierra 10.12.6 according to the advisory [1]. The issue is addressed with improved restrictions [1].

Exploitation

An attacker must have the ability to run a malicious or compromised application on the target system. No additional authentication is required beyond standard user-level access. The exploit sequence involves invoking the vulnerable kernel path through crafted API calls, which leads to the logic flaw being triggered.

Impact

Successful exploitation allows the application to execute arbitrary code with kernel privileges. This results in full compromise of the system, including the ability to modify kernel memory, install persistent malware, and bypass all security controls.

Mitigation

Apple released macOS Mojave 10.14.5 on May 13, 2019, which includes the fix [1]. Users should update to macOS Mojave 10.14.5 or later. The advisory notes that for customer protection, Apple does not disclose details before patches are available [1].