Details of VAR-201705-3990

ID

VAR-201705-3990

CVE

CVE-2017-6986

TITLE

Apple macOS of iBooks Component vulnerable to sandbox escape attacks

Trust: 0.8

sources: JVNDB: JVNDB-2017-003848

DESCRIPTION

An issue was discovered in certain Apple products. macOS before 10.12.5 is affected. The issue involves the "iBooks" component. It allows attackers to conduct sandbox-escape attacks or cause a denial of service (memory corruption) via a crafted app. Apple macOS is prone to multiple security vulnerabilities. An attacker can exploit these issues to gain elevated privileges, perform unauthorized actions and execute arbitrary code with kernel privileges. Failed exploit attempts will likely cause a denial-of-service condition. Apple macOS Sierra is a dedicated operating system developed by Apple for Mac computers

Trust: 1.98

sources: NVD: CVE-2017-6986 // JVNDB: JVNDB-2017-003848 // BID: 98483 // VULHUB: VHN-115189

AFFECTED PRODUCTS

vendor:	apple	model:	mac os x	scope:	eq	version:	10.12.4	Trust: 1.4
vendor:	apple	model:	mac os x	scope:	lte	version:	10.12.4	Trust: 1.0
vendor:	apple	model:	macos	scope:	eq	version:	10.12.4	Trust: 0.3
vendor:	apple	model:	macos	scope:	eq	version:	10.12.3	Trust: 0.3
vendor:	apple	model:	macos	scope:	eq	version:	10.12.2	Trust: 0.3
vendor:	apple	model:	macos	scope:	eq	version:	10.12.1	Trust: 0.3
vendor:	apple	model:	macos	scope:	eq	version:	10.12	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.11.6	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.10.5	Trust: 0.3
vendor:	apple	model:	macos	scope:	ne	version:	10.12.5	Trust: 0.3

sources: BID: 98483 // JVNDB: JVNDB-2017-003848 // CNNVD: CNNVD-201705-965 // NVD: CVE-2017-6986

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2017-6986
value:	HIGH
Trust: 1.0
NVD:	CVE-2017-6986
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-201705-965
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-115189
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2017-6986
severity:	MEDIUM
baseScore:	6.8
vectorString:	AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	8.6
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-115189
severity:	MEDIUM
baseScore:	6.8
vectorString:	AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	8.6
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2017-6986
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	REQUIRED
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	1.8
impactScore:	5.9
version:	3.0
Trust: 1.8

sources: VULHUB: VHN-115189 // JVNDB: JVNDB-2017-003848 // CNNVD: CNNVD-201705-965 // NVD: CVE-2017-6986

PROBLEMTYPE DATA

problemtype:

CWE-119

Trust: 1.9

sources: VULHUB: VHN-115189 // JVNDB: JVNDB-2017-003848 // NVD: CVE-2017-6986

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201705-965

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-201705-965

CONFIGURATIONS

sources: JVNDB: JVNDB-2017-003848

PATCH

title:	Apple security updates	url:	https://support.apple.com/en-us/HT201222	Trust: 0.8
title:	HT207797	url:	https://support.apple.com/en-us/HT207797	Trust: 0.8
title:	HT207797	url:	https://support.apple.com/ja-jp/HT207797	Trust: 0.8
title:	Apple macOS Sierra iBooks Security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=70441	Trust: 0.6

sources: JVNDB: JVNDB-2017-003848 // CNNVD: CNNVD-201705-965

EXTERNAL IDS

db:	NVD	id:	CVE-2017-6986	Trust: 2.8
db:	SECTRACK	id:	1038484	Trust: 1.1
db:	JVN	id:	JVNVU98089541	Trust: 0.8
db:	JVNDB	id:	JVNDB-2017-003848	Trust: 0.8
db:	CNNVD	id:	CNNVD-201705-965	Trust: 0.7
db:	BID	id:	98483	Trust: 0.3
db:	VULHUB	id:	VHN-115189	Trust: 0.1

sources: VULHUB: VHN-115189 // BID: 98483 // JVNDB: JVNDB-2017-003848 // CNNVD: CNNVD-201705-965 // NVD: CVE-2017-6986

REFERENCES

url:	https://support.apple.com/ht207797	Trust: 1.7
url:	http://www.securitytracker.com/id/1038484	Trust: 1.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-6986	Trust: 0.8
url:	http://jvn.jp/vu/jvnvu98089541/index.html	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2017-6986	Trust: 0.8
url:	https://www.apple.com/	Trust: 0.3

sources: VULHUB: VHN-115189 // BID: 98483 // JVNDB: JVNDB-2017-003848 // CNNVD: CNNVD-201705-965 // NVD: CVE-2017-6986

CREDITS

Tim Cappalli of Aruba, Ian Beer of Google Project Zero, Samuel Gro? and Niklas Baumstark, Chaitin Security Research Lab, evi1m0 of YSRC, sss and Axis of 360Nirvan team, 360 Security, Jann Horn, Federico Bento of Faculty of Sciences, Richard Zhu, and Team

Trust: 0.3

sources: BID: 98483

SOURCES

db:	VULHUB	id:	VHN-115189
db:	BID	id:	98483
db:	JVNDB	id:	JVNDB-2017-003848
db:	CNNVD	id:	CNNVD-201705-965
db:	NVD	id:	CVE-2017-6986

LAST UPDATE DATE

2025-04-20T22:12:19.294000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-115189	date:	2017-07-08T00:00:00
db:	BID	id:	98483	date:	2017-05-15T00:00:00
db:	JVNDB	id:	JVNDB-2017-003848	date:	2017-06-08T00:00:00
db:	CNNVD	id:	CNNVD-201705-965	date:	2017-05-24T00:00:00
db:	NVD	id:	CVE-2017-6986	date:	2025-04-20T01:37:25.860

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-115189	date:	2017-05-22T00:00:00
db:	BID	id:	98483	date:	2017-05-15T00:00:00
db:	JVNDB	id:	JVNDB-2017-003848	date:	2017-06-08T00:00:00
db:	CNNVD	id:	CNNVD-201705-965	date:	2017-05-24T00:00:00
db:	NVD	id:	CVE-2017-6986	date:	2017-05-22T05:29:03.007