CVE-2017-13909

Summary

An issue existed in the storage of sensitive tokens. This issue was addressed by placing the tokens in Keychain. This issue is fixed in macOS High Sierra 10.13. A local attacker may gain access to iCloud authentication tokens.

Affected Software

VendorProductVersion RangeStatus
ApplemacOSunspecified < 10.13affected

Weaknesses

  • A local attacker may gain access to iCloud authentication tokens

ADP Enrichment

CVE Program Container

Additional References

References