Sign-up

ID

VAR-201704-0785


CVE

CVE-2017-2429


TITLE

Apple macOS of FinderKit Vulnerabilities that prevent access restrictions on components

Trust: 0.8

sources: JVNDB: JVNDB-2017-002396

DESCRIPTION

An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "FinderKit" component. It allows remote attackers to bypass intended access restrictions in opportunistic circumstances by leveraging unexpected permission changes during an iCloud Sharing Send Link action. Apple macOS is prone to multiple security vulnerabilities. Attackers can exploit these issues to execute arbitrary code, obtain sensitive information, cause a denial-of-service condition, or bypass security restrictions and perform unauthorized actions. This may aid in further attacks. FinderKit is one of the query search components. A remote attacker using a specially crafted application could exploit this vulnerability to bypass access restrictions

Trust: 1.98

sources: NVD: CVE-2017-2429 // JVNDB: JVNDB-2017-002396 // BID: 97140 // VULHUB: VHN-110632

AFFECTED PRODUCTS

vendor:applemodel:mac os xscope:eqversion:10.12.3

Trust: 1.4

vendor:applemodel:mac os xscope:lteversion:10.12.3

Trust: 1.0

vendor:webkitmodel:open source project webkitscope:eqversion:0

Trust: 0.3

vendor:ubuntumodel:linuxscope:eqversion:16.10

Trust: 0.3

vendor:ubuntumodel:linux ltsscope:eqversion:16.04

Trust: 0.3

vendor:gentoomodel:linuxscope: - version: -

Trust: 0.3

vendor:applemodel:macosscope:eqversion:10.12.3

Trust: 0.3

vendor:applemodel:security update yosemitescope:neversion:2017-0010

Trust: 0.3

vendor:applemodel:security update el capitanscope:neversion:2017-0010

Trust: 0.3

vendor:applemodel:macosscope:neversion:10.12.4

Trust: 0.3

sources: BID: 97140 // JVNDB: JVNDB-2017-002396 // CNNVD: CNNVD-201704-070 // NVD: CVE-2017-2429

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2017-2429
value: HIGH

Trust: 1.0

NVD: CVE-2017-2429
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201704-070
value: HIGH

Trust: 0.6

VULHUB: VHN-110632
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2017-2429
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-110632
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2017-2429
baseSeverity: HIGH
baseScore: 7.5
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: HIGH
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 3.6
version: 3.0

Trust: 1.8

sources: VULHUB: VHN-110632 // JVNDB: JVNDB-2017-002396 // CNNVD: CNNVD-201704-070 // NVD: CVE-2017-2429

PROBLEMTYPE DATA

problemtype:NVD-CWE-noinfo

Trust: 1.0

problemtype:CWE-275

Trust: 0.9

problemtype:CWE-732

Trust: 0.1

sources: VULHUB: VHN-110632 // JVNDB: JVNDB-2017-002396 // NVD: CVE-2017-2429

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201704-070

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-201704-070

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2017-002396

PATCH
title:Apple security updatesurl:https://support.apple.com/en-us/HT201222
Trust: 0.8
title:HT207615url:https://support.apple.com/en-us/HT207615
Trust: 0.8
title:HT207615url:https://support.apple.com/ja-jp/HT207615
Trust: 0.8
title:Apple macOS Sierra FinderKit Security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=68963
Trust: 0.6
sources:
            
            
            JVNDB: JVNDB-2017-002396 // 
            
            
            
            CNNVD: CNNVD-201704-070

EXTERNAL IDS
db:NVDid:CVE-2017-2429
Trust: 2.8
db:BIDid:97140
Trust: 2.0
db:SECTRACKid:1038138
Trust: 1.7
db:JVNid:JVNVU90482935
Trust: 0.8
db:JVNDBid:JVNDB-2017-002396
Trust: 0.8
db:CNNVDid:CNNVD-201704-070
Trust: 0.7
db:VULHUBid:VHN-110632
Trust: 0.1
sources:
            
            
            VULHUB: VHN-110632 // 
            
            
            
            BID: 97140 // 
            
            
            
            JVNDB: JVNDB-2017-002396 // 
            
            
            
            CNNVD: CNNVD-201704-070 // 
            
            
            
            NVD: CVE-2017-2429

REFERENCES
url:http://www.securityfocus.com/bid/97140
Trust: 1.7
url:https://support.apple.com/ht207615
Trust: 1.7
url:http://www.securitytracker.com/id/1038138
Trust: 1.7
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-2429
Trust: 0.8
url:http://jvn.jp/vu/jvnvu90482935/index.html
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2017-2429
Trust: 0.8
url:https://www.apple.com/
Trust: 0.3
url:http://www.apple.com/macosx/
Trust: 0.3
sources:
            
            
            VULHUB: VHN-110632 // 
            
            
            
            BID: 97140 // 
            
            
            
            JVNDB: JVNDB-2017-002396 // 
            
            
            
            CNNVD: CNNVD-201704-070 // 
            
            
            
            NVD: CVE-2017-2429

CREDITS
Ulf Frisk, Apple, Brandon Azad, an anonymous researcher, Max Bazaliy, beist, Sergey Bylokhov, Simon Huang, pjf, Alex Fishman, Izik Eidus, Pekka Oikarainen, Matias Karhumaa, Marko Laakso, @cocoahuke, kimyok, Craig Arendt, Axis, sss, Orr A, Benjamin Gnahm, I
Trust: 0.3
sources:
            
            
            BID: 97140

SOURCES
db:VULHUBid:VHN-110632
db:BIDid:97140
db:JVNDBid:JVNDB-2017-002396
db:CNNVDid:CNNVD-201704-070
db:NVDid:CVE-2017-2429

LAST UPDATE DATE
2024-11-23T21:31:11.848000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-110632date:2020-08-24T00:00:00
db:BIDid:97140date:2017-06-08T08:02:00
db:JVNDBid:JVNDB-2017-002396date:2017-04-12T00:00:00
db:CNNVDid:CNNVD-201704-070date:2020-10-23T00:00:00
db:NVDid:CVE-2017-2429date:2024-11-21T03:23:30.520

SOURCES RELEASE DATE
db:VULHUBid:VHN-110632date:2017-04-02T00:00:00
db:BIDid:97140date:2017-03-27T00:00:00
db:JVNDBid:JVNDB-2017-002396date:2017-04-12T00:00:00
db:CNNVDid:CNNVD-201704-070date:2017-04-07T00:00:00
db:NVDid:CVE-2017-2429date:2017-04-02T01:59:01.840