CVE-2017-13871

Name of the Vulnerable Software and Affected Versions macOS versions prior to 10.13.2

Description The issue involves the "Mail" component and allows remote attackers to read cleartext e-mail content by leveraging the lack of installation of an S/MIME certificate by the recipient. This occurs when S/MIME encryption was intended.

Recommendations For macOS versions prior to 10.13.2, update to version 10.13.2 or later to resolve the issue. As a temporary workaround, consider configuring the Mail component to require S/MIME certificates for encrypted emails.