First published: Tue Sep 19 2017(Updated: )
Kernel. A memory corruption issue was addressed with improved memory handling.
Credit: an anonymous researcher an anonymous researcher an anonymous researcher an anonymous researcher an anonymous researcher an anonymous researcher an anonymous researcher an anonymous researcher an anonymous researcher an anonymous researcher product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple iOS | <11 | 11 |
Apple tvOS | <11 | 11 |
Apple watchOS | <4 | 4 |
Apple macOS High Sierra | <10.13 | 10.13 |
Apple macOS High Sierra | <10.13.1 | 10.13.1 |
Apple Sierra | ||
Apple El Capitan | ||
Apple Mac OS X | <=10.13.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
The vulnerability ID for this issue is CVE-2017-13843.
The severity level of CVE-2017-13843 is critical, with a severity value of 7.8.
The affected software includes Apple macOS versions up to and including 10.13.1, tvOS versions up to and including 11, iOS versions up to and including 11, and watchOS versions up to and including 4.
This vulnerability can be exploited by attackers to execute arbitrary code in a privileged context or cause a denial of service through memory corruption by using a crafted app.
Yes, Apple has released updates to address this vulnerability. It is recommended to update to the latest version of the affected software.