First published: Tue Sep 19 2017(Updated: )
Fonts. An inconsistent user interface issue was addressed with improved state management.
Credit: Leonard Grey Robert Sesek Google ChromeLeonard Grey Robert Sesek Google ChromeLeonard Grey Robert Sesek Google ChromeLeonard Grey Robert Sesek Google ChromeLeonard Grey Robert Sesek Google Chrome product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple iOS | <11 | 11 |
Apple tvOS | <11 | 11 |
Apple watchOS | <4 | 4 |
Apple macOS High Sierra | <10.13 | 10.13 |
Apple macOS High Sierra | <10.13.1 | 10.13.1 |
Apple Sierra | ||
Apple El Capitan | ||
Apple Mac OS X | <=10.13.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
The vulnerability ID for this issue is CVE-2017-13828.
The severity level of CVE-2017-13828 is medium (5.5).
The affected software for CVE-2017-13828 includes macOS High Sierra versions up to and excluding 10.13.1, Apple Sierra, Apple El Capitan, Apple iOS versions up to and excluding 11, Apple tvOS versions up to and excluding 11, Apple Mac OS X versions up to and including 10.13.0, and Apple watchOS versions up to and excluding 4.
Remote attackers can exploit CVE-2017-13828 by spoofing the user interface through crafted text.
Yes, Apple has provided remedies for CVE-2017-13828. Please refer to the references provided for more information.