First published: Sun Apr 02 2017(Updated: )
An issue was discovered in certain Apple products. macOS Server before 5.3 is affected. The issue involves the "Wiki Server" component. It allows remote attackers to enumerate user accounts via unspecified vectors.
Credit: product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple macOS Server | <=5.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2017-2382 has a medium severity level due to its ability to allow remote attackers to enumerate user accounts.
To mitigate CVE-2017-2382, upgrade your macOS Server to version 5.3 or later.
CVE-2017-2382 affects macOS Server versions prior to 5.3.
The vulnerability in CVE-2017-2382 involves the Wiki Server component of macOS Server.
Yes, CVE-2017-2382 can be exploited remotely by attackers to enumerate user accounts.