Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in certain Apple products. iCloud before 6.2 on Windows is affected. iTunes before 12.6 on Windows is affected. The issue involves cleartext client-certificate transmission in the "APNs Server" component. It allows man-in-the-middle attackers to track users via correlation with this certificate.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apple iCloud和iTunes for Windows APNs Server 安全漏洞
Vulnerability Description
Apple iCloud for Windows和iTunes都是美国苹果(Apple)公司的产品。前者是一款基于Windows平台的云服务,它支持存储音乐、照片、App和联系人等,后者是一套媒体播放器应用程序。APNs Server是其中的一个用于消息推送的服务器。 基于Windows平台的Apple iCloud 6.2之前的版本和中iTunes 12.6之前的版本的APNs Server组件存在安全漏洞,该漏洞源于程序以明文的方式发送用户证书。攻击者可利用该漏洞跟踪用户活动。
CVSS Information
N/A
Vulnerability Type
N/A