51241 Apple Patches macOS High Sierra Root Password Security Vulnerability, Update Now

Apple Patches macOS High Sierra Root Password Security Vulnerability, Update Now



Apple released a few moments ago a patch for the recently disclosed securty vulnerability affecting the macOS High Sierra 10.13 operating system, urging users to update their Macs as soon as possible.

Developer Lemi Orhan Ergin publicly disclosed the security vulnerability on his Twitter account, informing Apple and the macOS community that a flaw could allow anyone with physical access to your Mac running the latest macOS High Sierra 10.13 operting system to bypass the lock screen and change any settings without needing your username or password.

This was possible through the Other or the Guest User accounts. Someone could simply unlock your Mac via the Other account, accessible from the login screen, if they typed the “root” username without a password. When logged in via Guest User, it was also possible to access sensitive information and modify your settings by logging it as root, without a password in the login prompt.

Apple has patched the issue and urges all users to update their Macs

Apple was quick to patch the security flaw and released today the Security Update 2017-001, which patches the said issue. The company urges all users to install this update as soon as possible as it improves the security of your Mac and disables root access without a password from the Other or Guest User accounts. The update is now live in the Mac App Store.

To update your Mac and fix the security flaw so that no one can unlock your computer and modify settings or access any of your personal files, open the Mac App Store, go to the Updates tab, and wait for the Security Update 2017-001 to appear in the list of updates. Click the “Update” button on the right side to download and install the update on your machine. No restart is required. That’s it, your Mac is now safe again!

macOS High Sierra security update

macOS High Sierra security update

Developing story…

See also  ASUS DSL-N55U D1 Router Receives New Firmware - Version 1.1.2.3.224
On this topic: ( from category Articles (En) )

Leave feedback

Your email address will not be published. Required fields are marked *

*
*

four × one =

Top