An issue exists in certain Apple products. iOS prior to 10.3 is affected. The issue involves the "iTunes Store" component. It allows man-in-the-middle malicious users to modify the client-server data stream to iTunes sandbox web services by leveraging use of cleartext HTTP.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple iphone os |