vulnerability
OS X update for CoreText (CVE-2017-13825)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:M/Au:N/C:P/I:P/A:P) | Nov 1, 2017 | Nov 1, 2017 | Mar 27, 2026 |
Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
Nov 1, 2017
Added
Nov 1, 2017
Modified
Mar 27, 2026
Description
An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The issue involves the "CoreText" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory consumption) via a crafted font file.
Solutions
apple-osx-security-update-2017-001-sierraapple-osx-security-update-2017-004-el-capitanapple-osx-upgrade-10_13
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.