Sign-up

ID

VAR-201704-0715


CVE

CVE-2017-2381


TITLE

Apple macOS of sudo Vulnerability gained privileges in components

Trust: 0.8

sources: JVNDB: JVNDB-2017-002386

DESCRIPTION

An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "sudo" component. It allows remote authenticated users to gain privileges by leveraging membership in the admin group on a network directory server. Apple macOS is prone to multiple security vulnerabilities. Attackers can exploit these issues to execute arbitrary code, obtain sensitive information, cause a denial-of-service condition, or bypass security restrictions and perform unauthorized actions. This may aid in further attacks. sudo is one of the components for users to execute commands with special privileges in a secure manner. A remote attacker could exploit this vulnerability to gain privileges

Trust: 1.98

sources: NVD: CVE-2017-2381 // JVNDB: JVNDB-2017-002386 // BID: 97140 // VULHUB: VHN-110584

AFFECTED PRODUCTS

vendor:applemodel:mac os xscope:eqversion:10.12.3

Trust: 1.4

vendor:applemodel:mac os xscope:lteversion:10.12.3

Trust: 1.0

vendor:webkitmodel:open source project webkitscope:eqversion:0

Trust: 0.3

vendor:ubuntumodel:linuxscope:eqversion:16.10

Trust: 0.3

vendor:ubuntumodel:linux ltsscope:eqversion:16.04

Trust: 0.3

vendor:gentoomodel:linuxscope: - version: -

Trust: 0.3

vendor:applemodel:macosscope:eqversion:10.12.3

Trust: 0.3

vendor:applemodel:security update yosemitescope:neversion:2017-0010

Trust: 0.3

vendor:applemodel:security update el capitanscope:neversion:2017-0010

Trust: 0.3

vendor:applemodel:macosscope:neversion:10.12.4

Trust: 0.3

sources: BID: 97140 // JVNDB: JVNDB-2017-002386 // CNNVD: CNNVD-201704-044 // NVD: CVE-2017-2381

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2017-2381
value: HIGH

Trust: 1.0

NVD: CVE-2017-2381
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201704-044
value: HIGH

Trust: 0.6

VULHUB: VHN-110584
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2017-2381
severity: MEDIUM
baseScore: 6.5
vectorString: AV:N/AC:L/AU:S/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-110584
severity: MEDIUM
baseScore: 6.5
vectorString: AV:N/AC:L/AU:S/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2017-2381
baseSeverity: HIGH
baseScore: 8.8
vectorString: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 2.8
impactScore: 5.9
version: 3.0

Trust: 1.8

sources: VULHUB: VHN-110584 // JVNDB: JVNDB-2017-002386 // CNNVD: CNNVD-201704-044 // NVD: CVE-2017-2381

PROBLEMTYPE DATA

problemtype:NVD-CWE-noinfo

Trust: 1.0

problemtype:CWE-275

Trust: 0.9

sources: VULHUB: VHN-110584 // JVNDB: JVNDB-2017-002386 // NVD: CVE-2017-2381

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201704-044

TYPE

permissions and access control

Trust: 0.6

sources: CNNVD: CNNVD-201704-044

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2017-002386

PATCH
title:Apple security updatesurl:https://support.apple.com/en-us/HT201222
Trust: 0.8
title:HT207615url:https://support.apple.com/en-us/HT207615
Trust: 0.8
title:HT207615url:https://support.apple.com/ja-jp/HT207615
Trust: 0.8
title:Apple macOS Sierra sudo Fixes for permission permissions and access control vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=68937
Trust: 0.6
sources:
            
            
            JVNDB: JVNDB-2017-002386 // 
            
            
            
            CNNVD: CNNVD-201704-044

EXTERNAL IDS
db:NVDid:CVE-2017-2381
Trust: 2.8
db:BIDid:97140
Trust: 2.0
db:SECTRACKid:1038138
Trust: 1.7
db:JVNid:JVNVU90482935
Trust: 0.8
db:JVNDBid:JVNDB-2017-002386
Trust: 0.8
db:CNNVDid:CNNVD-201704-044
Trust: 0.7
db:VULHUBid:VHN-110584
Trust: 0.1
sources:
            
            
            VULHUB: VHN-110584 // 
            
            
            
            BID: 97140 // 
            
            
            
            JVNDB: JVNDB-2017-002386 // 
            
            
            
            CNNVD: CNNVD-201704-044 // 
            
            
            
            NVD: CVE-2017-2381

REFERENCES
url:http://www.securityfocus.com/bid/97140
Trust: 1.7
url:https://support.apple.com/ht207615
Trust: 1.7
url:http://www.securitytracker.com/id/1038138
Trust: 1.7
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-2381
Trust: 0.8
url:http://jvn.jp/vu/jvnvu90482935/index.html
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2017-2381
Trust: 0.8
url:https://www.apple.com/
Trust: 0.3
url:http://www.apple.com/macosx/
Trust: 0.3
sources:
            
            
            VULHUB: VHN-110584 // 
            
            
            
            BID: 97140 // 
            
            
            
            JVNDB: JVNDB-2017-002386 // 
            
            
            
            CNNVD: CNNVD-201704-044 // 
            
            
            
            NVD: CVE-2017-2381

CREDITS
Ulf Frisk, Apple, Brandon Azad, an anonymous researcher, Max Bazaliy, beist, Sergey Bylokhov, Simon Huang, pjf, Alex Fishman, Izik Eidus, Pekka Oikarainen, Matias Karhumaa, Marko Laakso, @cocoahuke, kimyok, Craig Arendt, Axis, sss, Orr A, Benjamin Gnahm, I
Trust: 0.3
sources:
            
            
            BID: 97140

SOURCES
db:VULHUBid:VHN-110584
db:BIDid:97140
db:JVNDBid:JVNDB-2017-002386
db:CNNVDid:CNNVD-201704-044
db:NVDid:CVE-2017-2381

LAST UPDATE DATE
2024-11-23T20:04:27.787000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-110584date:2019-10-03T00:00:00
db:BIDid:97140date:2017-06-08T08:02:00
db:JVNDBid:JVNDB-2017-002386date:2017-04-12T00:00:00
db:CNNVDid:CNNVD-201704-044date:2019-10-23T00:00:00
db:NVDid:CVE-2017-2381date:2024-11-21T03:23:24.757

SOURCES RELEASE DATE
db:VULHUBid:VHN-110584date:2017-04-02T00:00:00
db:BIDid:97140date:2017-03-27T00:00:00
db:JVNDBid:JVNDB-2017-002386date:2017-04-12T00:00:00
db:CNNVDid:CNNVD-201704-044date:2017-04-05T00:00:00
db:NVDid:CVE-2017-2381date:2017-04-02T01:59:00.403