CVE-2017-2533 : An issue was discovered in certain Apple products. macOS before 10.12.5 is affected. The issue involves the "DiskArbitra

An issue was discovered in certain Apple products. macOS before 10.12.5 is affected. The issue involves the "DiskArbitration" component. A race condition allows attackers to execute arbitrary code in a privileged context via a crafted app.

Published 2017-05-22 05:29:02

Updated 2017-10-25 01:29:01

Source Apple Inc.

View at NVD, CVE.org

Vulnerability category: Execute code

Exploit prediction scoring system (EPSS) score for CVE-2017-2533

Probability of exploitation activity in the next 30 days: 0.22%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 60 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2017-2533

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.6	HIGH	AV:N/AC:H/Au:N/C:C/I:C/A:C	4.9	10.0	NIST
Access Vector: Network Access Complexity: High Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete
7.0	HIGH	CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H	1.0	5.9	NIST
Attack Vector: Local Attack Complexity: High Privileges Required: None User Interaction: Required Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2017-2533

CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product contains a code sequence that can run concurrently with other code, and the code sequence requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence that is operating concurrently.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2017-2533

https://phoenhex.re/2017-06-09/pwn2own-diskarbitrationd-privesc

Pwn2Own: Safari sandbox part 1 – Mount yourself a root shell - phoenhex team
https://support.apple.com/HT207797

About the security content of macOS Sierra 10.12.5, Security Update 2017-002 El Capitan, and Security Update 2017-002 Yosemite - Apple Support
Vendor Advisory

CVEs referencing this url
https://www.exploit-db.com/exploits/42146/

Apple macOS - Disk Arbitration Daemon Race Condition
http://www.securitytracker.com/id/1038484

Apple macOS/OS X Multiple Flaws Let Remote Users Execute Arbitrary Code and Obtain Authentication Credentials and Let Local Users Obtain Potentially Sensitive Information and Gain Elevated Privileges

CVEs referencing this url
http://www.zerodayinitiative.com/advisories/ZDI-17-357/

ZDI-17-357 | Zero Day Initiative

Products affected by CVE-2017-2533

Apple » Mac Os X
Versions up to, including, (<=) 10.12.4
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2017-2533

Exploit prediction scoring system (EPSS) score for CVE-2017-2533

CVSS scores for CVE-2017-2533

CWE ids for CVE-2017-2533

References for CVE-2017-2533

Products affected by CVE-2017-2533