CVE-2017-13823

Description

An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The issue involves the QuickTime component. It allows attackers to bypass intended memory-read restrictions via a crafted app.

Risk Information

Base Score

5.5

MODERATE

Vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

EPSS Score

Exploitation Probability

0.197

Associated Vulnerability

Vulnerability	OS Platform
Multiple vulnerabilities are fixed in macOS High Sierra 10.13.6 - Reboot Automatically	Mac
Multiple vulnerabilities are fixed in macOS High Sierra 10.13.6 Combo Update - Reboot Automatically	Mac
Multiple vulnerabilities are fixed in macOS High Sierra 10.13.5 - Reboot Automatically	Mac
Multiple vulnerabilities are fixed in macOS High Sierra 10.13.4 - Reboot Automatically	Mac
Multiple vulnerabilities are fixed in macOS High Sierra 10.13.4 Combo Update - Reboot Automatically	Mac
Multiple vulnerabilities are fixed in macOS High Sierra 10.13.3	Mac
Multiple vulnerabilities are fixed in macOS High Sierra 10.13.3 Combo Update	Mac
Multiple vulnerabilities are fixed in macOS High Sierra 10.13.2	Mac
Multiple vulnerabilities are fixed in macOS High Sierra 10.13.2 Combo Update	Mac
Multiple vulnerabilities are fixed in macOS High Sierra 10.13.1	Mac
Multiple vulnerabilities are fixed in Security Update 2017-001 macOS High Sierra v10.13.1	Mac
Multiple vulnerabilities are fixed in Security Update 2017-001 macOS High Sierra v10.13	Mac

Patch Details

Click to see the patches provided by ManageEngine for this CVE

Patch ID	Patch Description
PATCH-601562	macOS High Sierra 10.13.6 - Reboot Automatically
PATCH-601563	macOS High Sierra 10.13.6 Combo Update - Reboot Automatically
PATCH-601563	macOS High Sierra 10.13.6 Combo Update - Reboot Automatically
PATCH-601562	macOS High Sierra 10.13.6 - Reboot Automatically
PATCH-601563	macOS High Sierra 10.13.6 Combo Update - Reboot Automatically
PATCH-601562	macOS High Sierra 10.13.6 - Reboot Automatically
PATCH-601563	macOS High Sierra 10.13.6 Combo Update - Reboot Automatically
PATCH-601562	macOS High Sierra 10.13.6 - Reboot Automatically
PATCH-601563	macOS High Sierra 10.13.6 Combo Update - Reboot Automatically
PATCH-601562	macOS High Sierra 10.13.6 - Reboot Automatically
PATCH-601312	Security Update 2017-001 macOS High Sierra v10.13.1
PATCH-601345	Security Update 2017-001 macOS High Sierra v10.13

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234