Описание
An authentication issue was addressed with improved state management. This issue is fixed in App Store Connect 3.0. An attacker with physical access to an unlocked device may be able to view sensitive user information.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 3.0 (исключая)
cpe:2.3:a:apple:app_store_connect:*:*:*:*:*:*:*:*
EPSS
Процентиль: 8%
0.00031
Низкий
4.6 Medium
CVSS3
Дефекты
CWE-287
Связанные уязвимости
CVSS3: 4.6
github
7 месяцев назад
An authentication issue was addressed with improved state management. This issue is fixed in App Store Connect 3.0. An attacker with physical access to an unlocked device may be able to view sensitive user information.
EPSS
Процентиль: 8%
0.00031
Низкий
4.6 Medium
CVSS3
Дефекты
CWE-287