Vulnerability & Exploit Database

Back to search

OS X update for Dictionary Widget (CVE-2017-13801)

Severity CVSS Published Added Modified
4 (AV:L/AC:M/Au:N/C:P/I:P/A:P) October 31, 2017 October 31, 2017 November 13, 2017

Description

An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The issue involves the "Dictionary Widget" component. It allows attackers to read local files if pasted text is used in a search.

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now

References

Solution

apple-osx-security-update-2017-001-sierra