← back
CVE-2017-13782

CVE-2017-13782

EPSS 1.1%
An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The issue involves the "Kernel" component. It allows attackers to bypass intended memory-read restrictions via a /dev/dtracehelper attack involving the dtrace_dif_variable and dtrace_getarg functions.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/172827/Apple-XNU-Kernel-Memory-Exposure.htmlhttps://lgtm.com/blog/apple_xnu_dtrace_CVE-2017-13782https://support.apple.com/HT208221http://www.securitytracker.com/id/1039710