A new security hole was being discovered in the current version of macOS High Sierra that allowed the App Store menu in System Preferences to be unlocked with any password. It's worth to note here that it can't be accessed with a non-administrator account. And Apple already patched the bug in the latest macOS 10.13.3 beta.
In order to reproduce the issue on macOS High Sierra version 10.13.2, which is the latest public release of the operating system, you are required to use an administrator account. System Preferences, click on App Store, click on the padlock icon to lock it if necessary. click on the padlock icon again, enter your username and any password, and click Unlock.
Apple will likely want to fix this latest security vulnerability as quickly as possible, so it's possible we'll see a similar supplemental update released, or perhaps it will fast track the release of macOS High Sierra version 10.13.3. As for macOS 10.12 or earlier version, we were unable to reproduce the issue on macOS Sierra version 10.12.6, suggesting the issue affects macOS High Sierra only.
Post a Comment