Sign-up

ID

VAR-201704-0774


CVE

CVE-2017-2418


TITLE

Apple macOS In the hypervisor component CR8 Vulnerability to obtain important information from control registers

Trust: 0.8

sources: JVNDB: JVNDB-2017-002392

DESCRIPTION

An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "Hypervisor" component. It allows guest OS users to obtain sensitive information from the CR8 control register via unspecified vectors. Apple macOS is prone to multiple security vulnerabilities. Attackers can exploit these issues to execute arbitrary code, obtain sensitive information, cause a denial-of-service condition, or bypass security restrictions and perform unauthorized actions. This may aid in further attacks. Hypervisor (also known as virtual machine monitor, VMM) is an intermediate software layer running between the physical server and the operating system, which allows multiple operating systems and applications to share a set of underlying physical hardware

Trust: 1.98

sources: NVD: CVE-2017-2418 // JVNDB: JVNDB-2017-002392 // BID: 97140 // VULHUB: VHN-110621

AFFECTED PRODUCTS

vendor:applemodel:mac os xscope:eqversion:10.12.3

Trust: 1.4

vendor:applemodel:mac os xscope:lteversion:10.12.3

Trust: 1.0

vendor:webkitmodel:open source project webkitscope:eqversion:0

Trust: 0.3

vendor:ubuntumodel:linuxscope:eqversion:16.10

Trust: 0.3

vendor:ubuntumodel:linux ltsscope:eqversion:16.04

Trust: 0.3

vendor:gentoomodel:linuxscope: - version: -

Trust: 0.3

vendor:applemodel:macosscope:eqversion:10.12.3

Trust: 0.3

vendor:applemodel:security update yosemitescope:neversion:2017-0010

Trust: 0.3

vendor:applemodel:security update el capitanscope:neversion:2017-0010

Trust: 0.3

vendor:applemodel:macosscope:neversion:10.12.4

Trust: 0.3

sources: BID: 97140 // JVNDB: JVNDB-2017-002392 // CNNVD: CNNVD-201704-063 // NVD: CVE-2017-2418

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2017-2418
value: MEDIUM

Trust: 1.0

NVD: CVE-2017-2418
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-201704-063
value: LOW

Trust: 0.6

VULHUB: VHN-110621
value: LOW

Trust: 0.1

nvd@nist.gov: CVE-2017-2418
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-110621
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2017-2418
baseSeverity: MEDIUM
baseScore: 6.5
vectorString: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: CHANGED
confidentialityImpact: HIGH
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 2.0
impactScore: 4.0
version: 3.0

Trust: 1.8

sources: VULHUB: VHN-110621 // JVNDB: JVNDB-2017-002392 // CNNVD: CNNVD-201704-063 // NVD: CVE-2017-2418

PROBLEMTYPE DATA

problemtype:CWE-200

Trust: 1.9

sources: VULHUB: VHN-110621 // JVNDB: JVNDB-2017-002392 // NVD: CVE-2017-2418

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-201704-063

TYPE

information disclosure

Trust: 0.6

sources: CNNVD: CNNVD-201704-063

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2017-002392

PATCH
title:Apple security updatesurl:https://support.apple.com/en-us/HT201222
Trust: 0.8
title:HT207615url:https://support.apple.com/en-us/HT207615
Trust: 0.8
title:HT207615url:https://support.apple.com/ja-jp/HT207615
Trust: 0.8
title:Apple macOS Sierra Hypervisor Repair measures for information disclosure vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=68956
Trust: 0.6
sources:
            
            
            JVNDB: JVNDB-2017-002392 // 
            
            
            
            CNNVD: CNNVD-201704-063

EXTERNAL IDS
db:NVDid:CVE-2017-2418
Trust: 2.8
db:BIDid:97140
Trust: 2.0
db:SECTRACKid:1038138
Trust: 1.1
db:JVNid:JVNVU90482935
Trust: 0.8
db:JVNDBid:JVNDB-2017-002392
Trust: 0.8
db:CNNVDid:CNNVD-201704-063
Trust: 0.6
db:VULHUBid:VHN-110621
Trust: 0.1
sources:
            
            
            VULHUB: VHN-110621 // 
            
            
            
            BID: 97140 // 
            
            
            
            JVNDB: JVNDB-2017-002392 // 
            
            
            
            CNNVD: CNNVD-201704-063 // 
            
            
            
            NVD: CVE-2017-2418

REFERENCES
url:http://www.securityfocus.com/bid/97140
Trust: 1.7
url:https://support.apple.com/ht207615
Trust: 1.7
url:http://www.securitytracker.com/id/1038138
Trust: 1.1
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-2418
Trust: 0.8
url:http://jvn.jp/vu/jvnvu90482935/index.html
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2017-2418
Trust: 0.8
url:https://www.apple.com/
Trust: 0.3
url:http://www.apple.com/macosx/
Trust: 0.3
sources:
            
            
            VULHUB: VHN-110621 // 
            
            
            
            BID: 97140 // 
            
            
            
            JVNDB: JVNDB-2017-002392 // 
            
            
            
            CNNVD: CNNVD-201704-063 // 
            
            
            
            NVD: CVE-2017-2418

CREDITS
Ulf Frisk, Apple, Brandon Azad, an anonymous researcher, Max Bazaliy, beist, Sergey Bylokhov, Simon Huang, pjf, Alex Fishman, Izik Eidus, Pekka Oikarainen, Matias Karhumaa, Marko Laakso, @cocoahuke, kimyok, Craig Arendt, Axis, sss, Orr A, Benjamin Gnahm, I
Trust: 0.3
sources:
            
            
            BID: 97140

SOURCES
db:VULHUBid:VHN-110621
db:BIDid:97140
db:JVNDBid:JVNDB-2017-002392
db:CNNVDid:CNNVD-201704-063
db:NVDid:CVE-2017-2418

LAST UPDATE DATE
2024-11-23T20:19:00.083000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-110621date:2017-07-12T00:00:00
db:BIDid:97140date:2017-06-08T08:02:00
db:JVNDBid:JVNDB-2017-002392date:2017-04-12T00:00:00
db:CNNVDid:CNNVD-201704-063date:2017-04-07T00:00:00
db:NVDid:CVE-2017-2418date:2024-11-21T03:23:29.273

SOURCES RELEASE DATE
db:VULHUBid:VHN-110621date:2017-04-02T00:00:00
db:BIDid:97140date:2017-03-27T00:00:00
db:JVNDBid:JVNDB-2017-002392date:2017-04-12T00:00:00
db:CNNVDid:CNNVD-201704-063date:2017-04-07T00:00:00
db:NVDid:CVE-2017-2418date:2017-04-02T01:59:01.497