PT-2018-5596 · Apple · Spotlight+1

Ken Harris

·

Published

2018-04-03

·

Updated

2018-05-04

·

CVE-2017-13839

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 10.13
Description: The issue involves the Spotlight component, allowing local users to see results for other users' files.
Recommendations: For macOS versions prior to 10.13, consider disabling the Spotlight component until a patch is available.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2017-13839

Affected Products

Spotlight
Apple Macos