The netprint App for iOS 3.2.3 and earlier does not verify X.509 certificates from servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: jpcert

Published: 2020-01-27T09:35:27

Updated: 2020-01-27T09:35:27

Reserved: 2020-01-06T00:00:00


Link: CVE-2020-5520

JSON object: View

cve-icon NVD Information

Status : Analyzed

Published: 2020-01-27T10:15:11.870

Modified: 2020-01-28T17:49:08.990


Link: CVE-2020-5520

JSON object: View

cve-icon Redhat Information

No data.

CWE