Lucene search
PRIOn knowledge basePRION:CVE-2015-6999HistoryOct 23, 2015 - 10:59 a.m.
Design/Logic Flaw
2015-10-2310:59:00
PRIOn knowledge base
www.prio-n.com
2
6.2 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.004 Low
EPSS
Percentile
72.2%
The OCSP client in Apple iOS before 9.1 does not check for certificate expiry, which allows remote attackers to spoof a valid certificate by leveraging access to a revoked certificate.
Related
cve
cve
CVE-2015-6999
2015-10-23 10:59:00
nessus
nessus
Apple iOS < 9.1 Multiple Vulnerabilities
2016-05-26 00:00:00
Apple iOS < 9.1 Multiple Vulnerabilities
2015-10-23 00:00:00
securityvulns
securityvulns
APPLE-SA-2015-10-21-1 iOS 9.1
2015-10-25 00:00:00
Apple iOS multiple security vulnerabilities
2015-10-25 00:00:00
6.2 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.004 Low
EPSS
Percentile
72.2%
Related for PRION:CVE-2015-6999