Описание
Citrix Worx Home for iOS before 10.3.6 and XenMobile MDX Toolkit for iOS before 10.3.6 might allow physically proximate attackers to bypass in-application Apple Touch ID authentication via unspecified vectors, related to an application requiring re-authentication.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:citrix:xenmobile_mdx_toolkit:10.3.0:*:*:*:*:iphone_os:*:*
cpe:2.3:a:citrix:xenmobile_mdx_toolkit:10.3.5:*:*:*:*:iphone_os:*:*
Конфигурация 2
Одно из
cpe:2.3:a:citrix:worx_home:10.3.0:*:*:*:*:iphone_os:*:*
cpe:2.3:a:citrix:worx_home:10.3.1:*:*:*:*:iphone_os:*:*
cpe:2.3:a:citrix:worx_home:10.3.5:*:*:*:*:iphone_os:*:*
EPSS
Процентиль: 18%
0.00058
Низкий
4.3 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-284
Связанные уязвимости
CVSS3: 4.3
github
больше 3 лет назад
Citrix Worx Home for iOS before 10.3.6 and XenMobile MDX Toolkit for iOS before 10.3.6 might allow physically proximate attackers to bypass in-application Apple Touch ID authentication via unspecified vectors, related to an application requiring re-authentication.
EPSS
Процентиль: 18%
0.00058
Низкий
4.3 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-284