← volver
CVE-2016-4763

CVE-2016-4763

EPSS 1.2%
WKWebView in WebKit in Apple iOS before 10, iTunes before 12.5.1 on Windows, and Safari before 10 does not properly verify X.509 certificates from HTTPS servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://lists.apple.com/archives/security-announce/2016/Sep/msg00007.htmlhttp://lists.apple.com/archives/security-announce/2016/Sep/msg00008.htmlhttp://lists.apple.com/archives/security-announce/2016/Sep/msg00012.htmlhttps://support.apple.com/HT207143https://support.apple.com/HT207157https://support.apple.com/HT207158http://www.securityfocus.com/bid/93066http://www.securitytracker.com/id/1036854