22 matches found
EUVD-2023-27231
Malicious code in bioql PyPI...
EUVD-2023-42395
Malicious code in bioql PyPI...
EUVD-2023-41398
Malicious code in bioql PyPI...
CVE-2023-38596
The issue was addressed with improved handling of protocols. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. An app may fail to enforce App Transport Security...
CVE-2023-38596
The issue was addressed with improved handling of protocols. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. An app may fail to enforce App Transport Security...
CVE-2023-38596
The issue was addressed with improved handling of protocols. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. An app may fail to enforce App Transport Security...
Design/Logic Flaw
The issue was addressed with improved handling of protocols. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. An app may fail to enforce App Transport Security...
CVE-2023-38596
The issue was addressed with improved handling of protocols. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. An app may fail to enforce App Transport Security...
CVE-2023-38596
CVE-2023-38596: Apple fixed a protocol handling issue that allowed an app to fail to enforce App Transport Security. Affected products include tvOS 17, iOS 17 and iPadOS 17, watchOS 10, and macOS Sonoma 14. Root cause: insufficient protocol handling in CFNetwork/App Transport Security logic. Reme...
CVE-2023-38596
The issue was addressed with improved handling of protocols. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. An app may fail to enforce App Transport Security...
PT-2023-26525 · Apple · Ipados +4
Name of the Vulnerable Software and Affected Versions: Apple iOS versions prior to 17 Apple iPadOS versions prior to 17 Apple tvOS versions prior to 17 Apple watchOS versions prior to 10 Apple macOS versions prior to Sonoma 14 Description: The issue is related to the handling of protocols, which...
CVE-2023-37511
If certain App Transport Security ATS settings are set in a certain manner, insecure loading of web content can be achieved...
CVE-2023-37511
If certain App Transport Security ATS settings are set in a certain manner, insecure loading of web content can be achieved...
Code injection
If certain App Transport Security ATS settings are set in a certain manner, insecure loading of web content can be achieved...
CVE-2023-23131
Selfwealth iOS mobile App 3.3.1 is vulnerable to Insecure App Transport Security ATS Settings...
Code injection
Selfwealth iOS mobile App 3.3.1 is vulnerable to Insecure App Transport Security ATS Settings...
CVE-2023-23131
Selfwealth iOS mobile App 3.3.1 is vulnerable to Insecure App Transport Security ATS Settings...
CVE-2023-23131
Selfwealth iOS mobile App 3.3.1 is vulnerable to Insecure App Transport Security ATS Settings...
CVE-2023-23131
Selfwealth iOS mobile App version 3.3.1 is identified as vulnerable due to Insecure App Transport Security (ATS) Settings. The root cause is improper ATS configuration allowing insecure network communication, which could impact confidentiality. AvailableConnected sources (NVD/Red Hat/PRION/CNNVD-...
Popular iOS Apps Vulnerable to TLS Interception Attacks
Dozens of iOS mobile banking, medical and other applications handling sensitive user information are vulnerable to man-in-the-middle attacks where TLS traffic can be intercepted. Of the 76 apps analyzed by Sudo Security Group, 19 are considered high-risk where financial or medical credentials, or...