← volver
CVE-2020-11024

Man-in-the-middle attack in Moonlight iOS/tvOS

CVSS 6.1 MEDIUMEPSS 0.8%CWE-300
In Moonlight iOS/tvOS before 4.0.1, the pairing process is vulnerable to a man-in-the-middle attack. The bug has been fixed in Moonlight v4.0.1 for iOS and tvOS.
CVSS:3.1/AV:P/AC:H/PR:L/UI:R/S:C/C:H/I:L/A:L
Productos afectados
moonlight-stream · Moonlight

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://github.com/moonlight-stream/moonlight-ios/commit/b0149b2fe9125a77ee11fe133382673694b6e8cchttps://github.com/moonlight-stream/moonlight-ios/pull/405https://github.com/moonlight-stream/moonlight-ios/security/advisories/GHSA-g298-gp8q-h6j3