CVE-2017-7158: Buffer Overflow
Screen Sharing Server. A permissions issue existed in the handling of screen sharing sessions. This issue was addressed with improved permissions handling.
Other sources
An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "Screen Sharing Server" component. It allows attackers to obtain root privileges for reading files by leveraging screen-sharing access.
Credit
Affected Software
Event History
Peer vulnerabilities
Found alongside the following vulnerabilities.
- CVE-2017-13887
- CVE-2017-9798
- CVE-2017-13905
- CVE-2017-7172
- CVE-2017-13892
- CVE-2017-7171
- CVE-2017-7151
- CVE-2017-1000254
- CVE-2017-13872
- CVE-2017-15422
- CVE-2017-13883
- CVE-2017-7163
- CVE-2017-7155
- CVE-2017-13878
- CVE-2017-13875
- CVE-2017-7159
- CVE-2017-13848
- CVE-2017-13858
- CVE-2017-13847
- CVE-2017-7162
- CVE-2017-13904
- CVE-2017-5754
- CVE-2017-13862
- CVE-2017-13867
- CVE-2017-7173
- CVE-2017-13876
- CVE-2017-13855
- CVE-2017-13865
- CVE-2017-13868
- CVE-2017-13869
- CVE-2017-7154
- CVE-2017-13871
- CVE-2017-13860
- CVE-2017-3735
- CVE-2017-12837
- CVE-2017-7158
- CVE-2017-13911
- CVE-2017-13886
Frequently Asked Questions
What is CVE-2017-7158?
CVE-2017-7158 is a vulnerability that exists in certain Apple products, specifically macOS before 10.13.2.
What is the severity of CVE-2017-7158?
The severity of CVE-2017-7158 is medium, with a CVSS score of 6.5.
How does CVE-2017-7158 affect Apple products?
CVE-2017-7158 allows attackers to obtain root privileges for reading files through screen-sharing access.
Which versions of macOS are affected by CVE-2017-7158?
macOS before 10.13.2 is affected by CVE-2017-7158.
How can I fix CVE-2017-7158?
To fix CVE-2017-7158, update your macOS to version 10.13.2 or later.