CVE-2015-7023
CVE-2015-7023 affects CFNetwork in iOS and macOS. The root cause is a failure to consistently apply uppercase vs lowercase when parsing cookies, enabling a remote server to overwrite cookies via unspecified vectors. The vulnerability is described as allowing cookies to be overwritten by different...