The Assets component in Apple iOS before 10 allows man-in-the-middle attackers to block software updates via vectors related to lack of an HTTPS session for retrieving updates.
References
Configurations
Information
Published : 2016-09-18 15:59
Updated : 2017-08-12 18:29
NVD link : CVE-2016-4741
Mitre link : CVE-2016-4741
JSON object : View
CWE
CWE-254
7PK - Security Features
Products Affected
apple
- iphone_os