Vulnerability Details : CVE-2017-7149
An issue was discovered in certain Apple products. macOS before 10.13 Supplemental Update is affected. The issue involves the "StorageKit" component. It allows attackers to discover passwords for APFS encrypted volumes by reading Disk Utility hints, because the stored hint value was accidentally set to the password itself, not the entered hint value.
Products affected by CVE-2017-7149
- cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2017-7149
0.18%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 54 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2017-7149
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
2.1
|
LOW | AV:L/AC:L/Au:N/C:P/I:N/A:N |
3.9
|
2.9
|
NIST | |
7.8
|
HIGH | CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
1.8
|
5.9
|
NIST |
References for CVE-2017-7149
-
https://support.apple.com/HT208165
About the security content of macOS High Sierra 10.13 Supplemental Update - Apple SupportVendor Advisory
-
https://www.theregister.co.uk/2017/10/05/apple_patches_password_hint_bug_that_revealed_password/
Dumb bug of the week: Apple's macOS reveals your encrypted drive's password in the hint box • The RegisterExploit;Press/Media Coverage;Third Party Advisory
-
https://hackernoon.com/new-macos-high-sierra-vulnerability-exposes-the-password-of-an-encrypted-apfs-container-b4f2f5326e79
New macOS High Sierra vulnerability exposes the password of an encrypted APFS container - By Matheus MarianoExploit;Third Party Advisory
-
http://www.securityfocus.com/bid/101178
Apple macOS CVE-2017-7149 Local Unauthorized Access VulnerabilityThird Party Advisory;VDB Entry
-
http://www.securitytracker.com/id/1039513
Apple macOS/OS X Disk Utility Hint Field Lets Local Users View the Password for an Encrypted APFS Volume - SecurityTrackerThird Party Advisory;VDB Entry
-
https://nakedsecurity.sophos.com/2017/10/05/urgent-update-your-mac-again-right-now/
Crazy but true – Apple’s “show hint” button reveals your actual password – Naked SecurityExploit;Technical Description;Third Party Advisory
Jump to