Vulnerability Details : CVE-2017-13851
An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "DesktopServices" component. It allows local users to bypass intended access restrictions on home folder files.
Exploit prediction scoring system (EPSS) score for CVE-2017-13851
Probability of exploitation activity in the next 30 days: 0.04%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 6 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2017-13851
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
2.1
|
LOW | AV:L/AC:L/Au:N/C:P/I:N/A:N |
3.9
|
2.9
|
NIST |
5.5
|
MEDIUM | CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
1.8
|
3.6
|
NIST |
References for CVE-2017-13851
-
https://support.apple.com/HT208144
About the security content of macOS High Sierra 10.13 - Apple SupportVendor Advisory
Products affected by CVE-2017-13851
- cpe:2.3:o:apple:mac_os_x:10.13.0:*:*:*:*:*:*:*