The host is installed with macOS Server before 5.3 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly check permissions. Successful exploitation could allow attackers to enumerate users.