CVE-2015-7094

2015-12-11T06:59:51
ID CVE-2015-7094
Type cve
Reporter NVD
Modified 2017-09-12T21:29:06

Description

CFNetwork HTTPProtocol in Apple iOS before 9.2 and OS X before 10.11.2 allows man-in-the-middle attackers to bypass the HSTS protection mechanism via a crafted URL.