CVE-2017-7154

MEDIUM

Apple <11.2 - Privilege Escalation/DoS

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-7154. PoCs published by Google Security Research.

AI-analyzed exploit summary This exploit demonstrates an information leak vulnerability (CVE-2017-7154) in macOS 10.13, where uninitialized kernel stack memory is leaked to userspace via the `process_policy` syscall. The PoC triggers the flaw and prints the leaked data.

Description

An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. The issue involves the "Kernel" component. It allows local users to bypass intended memory-read restrictions or cause a denial of service (system crash).

Exploits (1)

exploitdb WORKING POC VERIFIED

by Google Security Research · cdosmacos

https://www.exploit-db.com/exploits/43521

View Code ZIP pw:eip

This exploit demonstrates an information leak vulnerability (CVE-2017-7154) in macOS 10.13, where uninitialized kernel stack memory is leaked to userspace via the `process_policy` syscall. The PoC triggers the flaw and prints the leaked data.

Classification

Working Poc 100%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: macOS 10.13 (Darwin 17.0.0)

No auth needed

Prerequisites: macOS 10.13 (17A405) or vulnerable Darwin kernel

MITRE ATT&CK

T1003 - OS Credential Dumping

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Core References

Vendor Advisory x_refsource_confirm

https://support.apple.com/HT208331

Vendor Advisory x_refsource_confirm

https://support.apple.com/HT208327

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/103134

Vendor Advisory x_refsource_confirm

https://support.apple.com/HT208334

Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/43521/

Scores

CVSS v3 6.6

EPSS 0.0009

EPSS Percentile 26.3%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:H

Details

CWE

CWE-20

Status published

Products (3)

apple/iphone_os < 11.2

apple/mac_os_x < 10.13.2

apple/tvos < 11.2

Published Dec 27, 2017

Tracked Since Feb 18, 2026