CVE-2017-13883: Buffer Overflow
First published: Wed Dec 06 2017(Updated: )
Intel Graphics Driver. A memory corruption issue was addressed with improved memory handling.
Credit: Yu Wang Didi Research AmericaYu Wang Didi Research AmericaYu Wang Didi Research America product-security@apple.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple Mac OS X | <10.13.2 | |
| Apple macOS High Sierra | <10.13.2 | 10.13.2 |
| Apple Sierra | ||
| Apple El Capitan |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2017-13887
- CVE-2017-9798
- CVE-2017-13905
- CVE-2017-7172
- CVE-2017-13892
- CVE-2017-7171
- CVE-2017-7151
- CVE-2017-1000254
- CVE-2017-13872
- CVE-2017-15422
- CVE-2017-13883
- CVE-2017-7163
- CVE-2017-7155
- CVE-2017-13878
- CVE-2017-13875
- CVE-2017-7159
- CVE-2017-13848
- CVE-2017-13858
- CVE-2017-13847
- CVE-2017-7162
- CVE-2017-13904
- CVE-2017-5754
- CVE-2017-13862
- CVE-2017-13867
- CVE-2017-7173
- CVE-2017-13876
- CVE-2017-13855
- CVE-2017-13865
- CVE-2017-13868
- CVE-2017-13869
- CVE-2017-7154
- CVE-2017-13871
- CVE-2017-13860
- CVE-2017-3735
- CVE-2017-12837
- CVE-2017-7158
- CVE-2017-13911
- CVE-2017-13886
Frequently Asked Questions
What is CVE-2017-13883?
CVE-2017-13883 is a memory corruption vulnerability in the Intel Graphics Driver component of certain Apple products, allowing attackers to execute arbitrary code or cause denial of service.
Which Apple products are affected by CVE-2017-13883?
macOS before version 10.13.2, macOS High Sierra up to version 10.13.2, Sierra, and El Capitan are affected by CVE-2017-13883.
What is the severity of CVE-2017-13883?
CVE-2017-13883 has a severity rating of 7.8 (Critical).
How can CVE-2017-13883 be exploited?
CVE-2017-13883 can be exploited by crafting a malicious app that triggers memory corruption, leading to arbitrary code execution or denial of service.
Are there any references for CVE-2017-13883?
Yes, you can find more information about CVE-2017-13883 at the following references: [SecurityFocus](http://www.securityfocus.com/bid/102099), [SecurityTracker](http://www.securitytracker.com/id/1039966), and [Apple Support](https://support.apple.com/HT208331).
- collector/nvd-index
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- collector/apple-support
- alias/CVE-2017-7163
- alias/CVE-2017-7155
- agent/software-canonical-lookup-request
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/tags
- agent/trending
- vendor/apple
- canonical/apple mac os x
- canonical/apple macos high sierra
- canonical/apple sierra
- canonical/apple el capitan