CVE-2017-13892

An issue existed in the handling of Contact sharing. This issue was addressed with improved handling of user information. This issue is fixed in macOS High Sierra 10.13.2, Security Update 2017-002 Sierra, and Security Update 2017-005 El Capitan. Sharing contact information may lead to unexpected data sharing.

Published: Dec 23, 2021
Updated: Apr 13, 2023
CVE: CVE-2017-13892
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.5
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
apple / mac_os_x	10.12	10.12.6
apple / mac_os_x	10.11.6-security_update_2016-003	10.11.6-security_update_2016-003.x
apple / mac_os_x	10.11.6-security_update_2016-002	10.11.6-security_update_2016-002.x
apple / mac_os_x	10.11.6-security_update_2016-001	10.11.6-security_update_2016-001.x
apple / mac_os_x	10.12.6-security_update_2017-001	10.12.6-security_update_2017-001.x
apple / mac_os_x	10.11.6-security_update_2017-004	10.11.6-security_update_2017-004.x
apple / mac_os_x	10.11.6-security_update_2017-002	10.11.6-security_update_2017-002.x
apple / mac_os_x	10.11.6-security_update_2017-001	10.11.6-security_update_2017-001.x
apple / mac_os_x	10.11.6-security_update_2017-003	10.11.6-security_update_2017-003.x
apple / mac_os_x	10.11.6	10.11.6.x
apple / mac_os_x	10.11	10.11.6
apple / mac_os_x	10.12.6	10.12.6.x
apple / macos	-	10.13.2

https://support.apple.com/en-us/HT208331

Vulnerability Database

290,206

CVE-2017-13892