The CFNetwork HTTPProtocol component in Apple iOS prior to 9 allows remote malicious users to bypass the HSTS protection mechanism, and consequently obtain sensitive information, via a crafted URL.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple iphone os |
||
apple watchos 1.0 |