Apple Macos High Sierra 10.13 Supplemental Update vulnerabilities
2 known vulnerabilities affecting apple/macos_high_sierra_10.13_supplemental_update.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2017-7149HIGHCVSS 7.82017-10-05
CVE-2017-7149 [HIGH] CVE-2017-7149: macOS High Sierra 10.13 Supplemental Update
Apple Security Update: About the security content of macOS High Sierra 10.13 Supplemental Update
Product: macOS High Sierra 10.13 Supplemental Update
CVE: CVE-2017-7149
Component: StorageKit
Impact: A local attacker may gain access to an encrypted APFS volume
Description: If a hint was set in Disk Utility when creating an APFS encrypted volume, the password was stored as the hint. This was addressed by clearing hint
apple
CVE-2017-7150MEDIUMCVSS 5.52017-10-05
CVE-2017-7150 [MEDIUM] CVE-2017-7150: macOS High Sierra 10.13 Supplemental Update
Apple Security Update: About the security content of macOS High Sierra 10.13 Supplemental Update
Product: macOS High Sierra 10.13 Supplemental Update
CVE: CVE-2017-7150
Component: Security
Impact: A malicious application can extract keychain passwords
Description: A method existed for applications to bypass the keychain access prompt with a synthetic click. This was addressed by requiring the user password when pro
apple