Apple · Apple Macos · CVE-2017-13909
**Name of the Vulnerable Software and Affected Versions**
macOS versions prior to 10.13
**Description**
A local attacker may gain access to iCloud authentication tokens due to an issue in the storage of sensitive tokens. The issue was addressed by placing the tokens in Keychain.
**Recommendations**
For versions prior to 10.13, update to macOS High Sierra 10.13 to fix the issue.