Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistAppleCVELIST:CVE-2017-13872
HistoryNov 29, 2017 - 5:00 p.m.

CVE-2017-13872

2017-11-2917:00:00
apple
www.cve.org
1

6.8 Medium

AI Score

Confidence

High

0.149 Low

EPSS

Percentile

95.8%

JSON

An issue was discovered in certain Apple products. macOS High Sierra before Security Update 2017-001 is affected. The issue involves the “Directory Utility” component. It allows attackers to obtain administrator access without a password via certain interactions involving entry of the root user name.

CNA Affected

[
  {
    "product": "macOS High Sierra",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "macOS High Sierra"
      }
    ]
  }
]

Related

openvas 2
zdt 1
seebug 1
cert 1
nvd 1
cve 1
nessus 5
apple 4
prion 1
threatpost 1
kitploit 1
openvas
openvas
Apple Mac OS X High Sierra Local Root Authentication Bypass Vulnerability
2017-11-29 00:00:00
Apple Mac OS X Security Updates (HT208331)-03
2017-12-07 00:00:00
zdt
zdt
Apple macOS 10.13.1 High Sierra - Blank Root Local Privilege Escalation Vulnerability
2017-12-09 00:00:00
seebug
seebug
macOS High Sierra - Root Privilege Escalation (CVE-2017-13872)
2017-12-01 00:00:00
cert
cert
Apple MacOS High Sierra disabled account authentication bypass
2017-11-29 00:00:00
nvd
nvd
CVE-2017-13872
2017-11-29 17:29:00
cve
cve
CVE-2017-13872
2017-11-29 17:29:00
nessus
nessus
macOS 10.13 root Authentication Bypass Direct Check
2017-11-29 00:00:00
macOS 10.13 Authentication Bypass Remote Check (CVE-2017-13872)
2017-12-04 00:00:00
MacOS 10.13 root Authentication Bypass (Security Update 2017-001)
2017-11-28 00:00:00
apple
apple
About the security content of Security Update 2017-001 - Apple Support
2017-12-02 04:57:38
About the security content of Security Update 2017-001
2017-11-29 00:00:00
About the security content of macOS High Sierra 10.13.2, Security Update 2017-002 Sierra, and Security Update 2017-005 El Capitan
2017-12-06 00:00:00
prion
prion
Directory traversal
2017-11-29 17:29:00
threatpost
threatpost
Apple Announces Emergency Patch to Fix High Sierra Login Bug
2017-11-29 13:17:13
kitploit
kitploit
rootOS - macOS Root Helper
2019-03-09 20:25:00

6.8 Medium

AI Score

Confidence

High

0.149 Low

EPSS

Percentile

95.8%

JSON
Related for CVELIST:CVE-2017-13872
openvas2zdt1seebug1cert1nvd1cve1nessus5apple4prion1threatpost1kitploit1