CVE-2017-7141

Name of the Vulnerable Software and Affected Versions macOS versions prior to 10.13

Description The issue involves the Mail component and allows remote attackers to bypass an intended off value of the Load remote content in messages setting. This enables attackers to discover an e-mail recipient's IP address via an HTML email message.

Recommendations For macOS versions prior to 10.13, update to version 10.13 or later to resolve the issue. As a temporary workaround, consider disabling the Load remote content in messages setting in the Mail application to minimize the risk of exploitation.