CCCrypt in CommonCrypto in Apple iOS prior to 9.3.2, OS X prior to 10.11.5, tvOS prior to 9.2.1, and watchOS prior to 2.2.1 mishandles return values during key-length calculations, which allows malicious users to obtain sensitive information via a crafted app.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple iphone os |
||
apple mac os x |
||
apple tvos |
||
apple watchos |