CVE-2010-1810

2010-09-0921:00:00

apple

www.cve.org

5.6 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

39.9%

JSON

FaceTime in Apple iOS before 4.1 on the iPhone and iPod touch does not properly handle invalid X.509 certificates, which allows man-in-the-middle attackers to redirect calls via a crafted certificate.

References

lists.apple.com/archives/security-announce/2010//Sep/msg00002.html

support.apple.com/kb/HT4334

exchange.xforce.ibmcloud.com/vulnerabilities/61695