An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. The issue involves the "Security" component. It allows attackers to bypass intended access restrictions via an untrusted certificate.
References
Link | Resource |
---|---|
https://support.apple.com/HT207798 | Vendor Advisory |
http://www.securityfocus.com/bid/98479 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1038485 |
Configurations
Information
Published : 2017-05-21 22:29
Updated : 2017-07-07 18:29
NVD link : CVE-2017-2498
Mitre link : CVE-2017-2498
JSON object : View
CWE
CWE-295
Improper Certificate Validation
Products Affected
apple
- iphone_os