Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.8
CVSSv2

CVE-2007-4680

Published: 15/11/2007 Updated: 29/07/2017
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Subscribe to Mac Os X

Vulnerability Summary

CFNetwork in Apple Mac OS X 10.3.9 and 10.4 up to and including 10.4.10 does not properly validate certificates, which allows remote malicious users to spoof trusted SSL certificates via a man-in-the-middle attack.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

apple mac os x 10.4.4

apple mac os x 10.4.5

apple mac os x 10.4.6

apple mac os x 10.4.7

apple mac os x 10.4.1

apple mac os x 10.4.8

apple mac os x 10.4.9

apple mac os x 10.4.2

apple mac os x 10.4.3

References

CWE-287http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.htmlhttp://docs.info.apple.com/article.html?artnum=307041http://www.us-cert.gov/cas/techalerts/TA07-319A.htmlhttp://www.securityfocus.com/bid/26444http://securitytracker.com/id?1018950http://secunia.com/advisories/27643http://docs.info.apple.com/article.html?artnum=307563http://www.vupen.com/english/advisories/2007/3868http://www.vupen.com/english/advisories/2008/0920/referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/38463https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654CVE-2024-2757authentication bypassCVE-2024-3194CVE-2024-33640CVE-2024-21111dosinsecure direct object referenceCVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook