Lucene search

K

MitreCVELIST:CVE-2017-5887

HistoryApr 06, 2017 - 2:00 p.m.

CVE-2017-5887

2017-04-0614:00:00

mitre

www.cve.org

0.002 Low

EPSS

Percentile

54.9%

WebSocket.swift in Starscream before 2.0.4 allows an SSL Pinning bypass because pinning occurs in the stream function (this is too late; pinning should occur in the initStreamsWithData function).

References

seclists.org/bugtraq/2017/Apr/67

github.com/daltoniam/Starscream/commit/dbeb1190b8dcbff4f0b797f9e9d9b9b864d1f0d6

github.com/daltoniam/Starscream/releases/tag/2.0.4

0.002 Low

EPSS

Percentile

54.9%

Related for CVELIST:CVE-2017-5887

prion1 osv1 cve1 nvd1