Lucene search

[email protected]NVD:CVE-2017-13839

HistoryApr 03, 2018 - 6:29 a.m.

CVE-2017-13839

2018-04-0306:29:00

CWE-200

[email protected]

web.nvd.nist.gov

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

4.5

Confidence

High

EPSS

Percentile

5.1%

JSON

An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the “Spotlight” component. It allows local users to see results for other users’ files.

Affected configurations

Nvd

Node

applemac_os_xMatch10.13.0

VendorProductVersionCPE
applemac_os_x10.13.0cpe:2.3:o:apple:mac_os_x:10.13.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
apple	mac_os_x	10.13.0	cpe:2.3:o:apple:mac_os_x:10.13.0:::::::*

References

support.apple.com/HT208144

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

4.5

Confidence

High

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2017-13839

cve1 prion1 cvelist1 openvas1 apple2 nessus1