Details of VAR-201711-0475

ID

VAR-201711-0475

CVE

CVE-2017-13786

TITLE

Apple macOS of APFS Plaintext in components APFS Data read vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2017-010375

DESCRIPTION

An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The issue involves the "APFS" component. It does not properly restrict the DMA mapping time of FileVault decryption buffers, which allows attackers to read cleartext APFS data via a crafted Thunderbolt adapter. Apple macOS High Sierra is a set of dedicated operating systems developed by Apple (Apple) for Mac computers. APFS is one of the Apple device-specific file system components. A security vulnerability exists in the APFS component of Apple macOS High Sierra prior to 10.13.1. Attackers can use a specially crafted Thunderbolt converter to exploit this vulnerability to recover unencrypted APFS file system data

Trust: 1.8

sources: NVD: CVE-2017-13786 // JVNDB: JVNDB-2017-010375 // VULHUB: VHN-104443 // VULMON: CVE-2017-13786

AFFECTED PRODUCTS

vendor:	apple	model:	mac os x	scope:	lte	version:	10.13.0	Trust: 1.0
vendor:	apple	model:	mac os x	scope:	eq	version:	10.13	Trust: 0.8
vendor:	apple	model:	mac os x	scope:	eq	version:	10.13.0	Trust: 0.6

sources: JVNDB: JVNDB-2017-010375 // CNNVD: CNNVD-201709-045 // NVD: CVE-2017-13786

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2017-13786
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2017-13786
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-201709-045
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-104443
value:	LOW
Trust: 0.1
VULMON:	CVE-2017-13786
value:	LOW
Trust: 0.1

nvd@nist.gov:	CVE-2017-13786
severity:	LOW
baseScore:	2.1
vectorString:	AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
VULHUB:	VHN-104443
severity:	LOW
baseScore:	2.1
vectorString:	AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2017-13786
baseSeverity:	MEDIUM
baseScore:	4.6
vectorString:	CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
attackVector:	PHYSICAL
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	0.9
impactScore:	3.6
version:	3.0
Trust: 1.8

sources: VULHUB: VHN-104443 // VULMON: CVE-2017-13786 // JVNDB: JVNDB-2017-010375 // CNNVD: CNNVD-201709-045 // NVD: CVE-2017-13786

PROBLEMTYPE DATA

problemtype:	NVD-CWE-noinfo	Trust: 1.0
problemtype:	CWE-200	Trust: 0.9

sources: VULHUB: VHN-104443 // JVNDB: JVNDB-2017-010375 // NVD: CVE-2017-13786

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-201709-045

TYPE

information disclosure

Trust: 0.6

sources: CNNVD: CNNVD-201709-045

CONFIGURATIONS

sources: JVNDB: JVNDB-2017-010375

PATCH

title:	Apple security updates	url:	https://support.apple.com/en-us/HT201222	Trust: 0.8
title:	HT208221	url:	https://support.apple.com/en-us/HT208221	Trust: 0.8
title:	HT208221	url:	https://support.apple.com/ja-jp/HT208221	Trust: 0.8
title:	Apple macOS High Sierra APFS Security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=100024	Trust: 0.6
title:	Apple: macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, and Security Update 2017-004 El Capitan	url:	https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories&qid=870f3f04ef17f7b183f74ae687a1561d	Trust: 0.1

sources: VULMON: CVE-2017-13786 // JVNDB: JVNDB-2017-010375 // CNNVD: CNNVD-201709-045

EXTERNAL IDS

db:	NVD	id:	CVE-2017-13786	Trust: 2.6
db:	SECTRACK	id:	1039710	Trust: 1.8
db:	JVN	id:	JVNVU99000953	Trust: 0.8
db:	JVNDB	id:	JVNDB-2017-010375	Trust: 0.8
db:	CNNVD	id:	CNNVD-201709-045	Trust: 0.7
db:	VULHUB	id:	VHN-104443	Trust: 0.1
db:	VULMON	id:	CVE-2017-13786	Trust: 0.1

sources: VULHUB: VHN-104443 // VULMON: CVE-2017-13786 // JVNDB: JVNDB-2017-010375 // CNNVD: CNNVD-201709-045 // NVD: CVE-2017-13786

REFERENCES

url:	https://support.apple.com/ht208221	Trust: 1.8
url:	http://www.securitytracker.com/id/1039710	Trust: 1.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-13786	Trust: 0.8
url:	http://jvn.jp/vu/jvnvu99000953/index.html	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2017-13786	Trust: 0.8
url:	https://cwe.mitre.org/data/definitions/.html	Trust: 0.1
url:	https://www.rapid7.com/db/vulnerabilities/apple-osx-apfs-cve-2017-13786	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1
url:	https://support.apple.com/kb/ht208221	Trust: 0.1

sources: VULHUB: VHN-104443 // VULMON: CVE-2017-13786 // JVNDB: JVNDB-2017-010375 // CNNVD: CNNVD-201709-045 // NVD: CVE-2017-13786

SOURCES

db:	VULHUB	id:	VHN-104443
db:	VULMON	id:	CVE-2017-13786
db:	JVNDB	id:	JVNDB-2017-010375
db:	CNNVD	id:	CNNVD-201709-045
db:	NVD	id:	CVE-2017-13786

LAST UPDATE DATE

2025-04-20T19:49:57.555000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-104443	date:	2019-10-03T00:00:00
db:	VULMON	id:	CVE-2017-13786	date:	2019-10-03T00:00:00
db:	JVNDB	id:	JVNDB-2017-010375	date:	2017-12-13T00:00:00
db:	CNNVD	id:	CNNVD-201709-045	date:	2019-10-23T00:00:00
db:	NVD	id:	CVE-2017-13786	date:	2025-04-20T01:37:25.860

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-104443	date:	2017-11-13T00:00:00
db:	VULMON	id:	CVE-2017-13786	date:	2017-11-13T00:00:00
db:	JVNDB	id:	JVNDB-2017-010375	date:	2017-12-13T00:00:00
db:	CNNVD	id:	CNNVD-201709-045	date:	2017-08-30T00:00:00
db:	NVD	id:	CVE-2017-13786	date:	2017-11-13T03:29:00.410