Security Advisory

CVE-2015-6999

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2015-10-23 10:00:00

Last updated 2024-08-06 07:36:35

Assigner apple

State PUBLISHED

Description

The OCSP client in Apple iOS before 9.1 does not check for certificate expiry, which allows remote attackers to spoof a valid certificate by leveraging access to a revoked certificate.

← Browse all CVEs View on cve.org ↗