Описание
The OCSP client in Apple iOS before 9.1 does not check for certificate expiry, which allows remote attackers to spoof a valid certificate by leveraging access to a revoked certificate.
The OCSP client in Apple iOS before 9.1 does not check for certificate expiry, which allows remote attackers to spoof a valid certificate by leveraging access to a revoked certificate.
EPSS
Процентиль: 44%
0.0022
Низкий
CVE ID
Связанные уязвимости
nvd
больше 10 лет назад
The OCSP client in Apple iOS before 9.1 does not check for certificate expiry, which allows remote attackers to spoof a valid certificate by leveraging access to a revoked certificate.
fstec
больше 10 лет назад
Уязвимость операционной системы iOS, позволяющая нарушителю подменить сертификат безопасности
EPSS
Процентиль: 44%
0.0022
Низкий