CVE-2017-13872

Summary

An issue was discovered in certain Apple products. macOS High Sierra before Security Update 2017-001 is affected. The issue involves the "Directory Utility" component. It allows attackers to obtain administrator access without a password via certain interactions involving entry of the root user name.

Affected Software

VendorProductVersion RangeStatus
n/amacOS High SierramacOS High Sierraaffected

Weaknesses

  • improper access control

ADP Enrichment

CVE Program Container

Additional References

References