An issue exists in certain Apple products. iCloud prior to 6.2 on Windows is affected. iTunes prior to 12.6 on Windows is affected. The issue involves cleartext client-certificate transmission in the "APNs Server" component. It allows man-in-the-middle malicious users to track users via correlation with this certificate.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple icloud |
||
apple itunes |