CVE-2017-13873 — Sensitive Information Exposure

Vendor	Product	Version range	Fixed in
apple	ios	—	—
apple	iphone_os	< 11.0	11.0
apple	mac_os_x	< 10.13	10.13
apple	macos_high_sierra	—	—
apple	tvos	< 11.0	11.0
apple	tvos	—	—
apple	watchos	< 4.0	4.0
apple	watchos_4	—	—

Apple

CVE-2017-13873: macOS High Sierra 10.13

vendor_apple·2017-09-25·CVSS 4.3

CVE-2017-13873 [MEDIUM] CVE-2017-13873: macOS High Sierra 10.13 Apple Security Update: About the security content of macOS High Sierra 10.13 Product: macOS High Sierra Version: 10.13 CVE: CVE-2017-13873 Component: Kernel Impact: A malicious application may be able to learn information about the presence and operation of other applications on the device. Description: An application was able to access network activity information maintained by the operating system unrestricted. This issue was addressed by reducing the information available to third party applications.

Apple

CVE-2017-13873: watchOS 4

vendor_apple·2017-09-19·CVSS 4.3

CVE-2017-13873 [MEDIUM] CVE-2017-13873: watchOS 4 Apple Security Update: About the security content of watchOS 4 Product: watchOS 4 CVE: CVE-2017-13873 Component: Kernel Impact: A malicious application may be able to learn information about the presence and operation of other applications on the device. Description: An application was able to access network activity information maintained by the operating system unrestricted. This issue was addressed by reducing the information available to third party applications.

Apple

CVE-2017-13873: iOS 11

vendor_apple·2017-09-19·CVSS 4.3

CVE-2017-13873 [MEDIUM] CVE-2017-13873: iOS 11 Apple Security Update: About the security content of iOS 11 Product: iOS Version: 11 CVE: CVE-2017-13873 Component: Kernel Impact: A malicious application may be able to learn information about the presence and operation of other applications on the device. Description: An application was able to access network activity information maintained by the operating system unrestricted. This issue was addressed by reducing the information available to third party applications.

Apple

CVE-2017-13873: tvOS 11

vendor_apple·2017-09-19·CVSS 4.3

CVE-2017-13873 [MEDIUM] CVE-2017-13873: tvOS 11 Apple Security Update: About the security content of tvOS 11 Product: tvOS Version: 11 CVE: CVE-2017-13873 Component: Kernel Impact: A malicious application may be able to learn information about the presence and operation of other applications on the device. Description: An application was able to access network activity information maintained by the operating system unrestricted. This issue was addressed by reducing the information available to third party applications.

GHSA

GHSA-whh7-rf6p-rj9g: An issue was discovered in certain Apple products

ghsa_unreviewed·2022-05-14

CVE-2017-13873 [MEDIUM] CWE-200 GHSA-whh7-rf6p-rj9g: An issue was discovered in certain Apple products An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "Kernel" component. It allows attackers to obtain sensitive network-activity information about arbitrary apps via a crafted app.

CVE-2017-13873: An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is…

Affected

CVSS provenance