← back
CVE-2017-2412

CVE-2017-2412

EPSS 0.8%
An issue was discovered in certain Apple products. iOS before 10.3 is affected. The issue involves the "iTunes Store" component. It allows man-in-the-middle attackers to modify the client-server data stream to iTunes sandbox web services by leveraging use of cleartext HTTP.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://support.apple.com/HT207617http://www.securityfocus.com/bid/97138http://www.securitytracker.com/id/1038139