Yesterday we heard about a security flaw in Apple’s macOS High Sierra that would give anyone root access to your Mac without a password. Apple has now release a software update that fixes the issue on their macOS.
The update will patch the issue that allowed anyone to override your Mac using the username ‘Root’ with no password. This was a serious security flaw and Apple acted very quickly to fix it. You can see some of the release notes for the software update below.
Available for: macOS High Sierra 10.13 and macOS High Sierra 10.13.1
Not impacted: macOS Sierra 10.12.6 and earlier
Impact: An attacker may be able to bypass administrator authentication without supplying the administrator’s password
Description: A logic error existed in the validation of credentials. This was addressed with improved credential validation.
Entry updated November 29, 2017
The Security update for macOS High Sierra is now available to download from the Mac App store, it is recommended that you install the update as soon as possible.