An issue existed in the storage of sensitive tokens. This issue was addressed by placing the tokens in Keychain. This issue is fixed in macOS High Sierra 10.13. A local attacker may gain access to iCloud authentication tokens.
References
Link | Resource |
---|---|
https://support.apple.com/en-us/HT208144 | Vendor Advisory |
https://support.apple.com/en-us/HT208144 | Vendor Advisory |
Configurations
History
21 Nov 2024, 03:11
Type | Values Removed | Values Added |
---|---|---|
References | () https://support.apple.com/en-us/HT208144 - Vendor Advisory |
Information
Published : 2021-12-23 20:15
Updated : 2024-11-21 03:11
NVD link : CVE-2017-13909
Mitre link : CVE-2017-13909
CVE.ORG link : CVE-2017-13909
JSON object : View
Products Affected
apple
- mac_os_x
CWE
CWE-922
Insecure Storage of Sensitive Information