An issue exists in certain Apple products. iOS prior to 11 is affected. The issue involves the "Exchange ActiveSync" component. It allows remote malicious users to erase a device in opportunistic circumstances by hijacking a cleartext AutoDiscover V1 session during the setup of an Exchange account.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple iphone os |