NA - CVE-2022-24901 - Improper validation of the Apple certificate...

May 4, 2022 08:00 am Cyber Security 177

Executive Summary

This vulnerability is currently undergoing analysis and not all information is available. Please check back soon to view the completed vulnerability summary


Informations
Name
CVE-2022-24901
First vendor Publication
2022-05-04
Vendor
Cve
Last vendor Modification
2022-05-04

Security-Database Scoring CVSS v3


Cvss vector : N/A
Overall CVSS Score
NA

Base Score
NA
Environmental Score
NA
impact SubScore
NA
Temporal Score
NA
Exploitabality Sub Score
NA

 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2


Cvss vector :
Cvss Base Score
N/A
Attack Range
N/A
Cvss Impact Score
N/A
Attack Complexity
N/A
Cvss Expoit Score
N/A
Authentication
N/A
Calculate full CVSS 2.0 Vectors scores

Detail




Improper validation of the Apple certificate URL in the Apple Game Center authentication adapter allows attackers to bypass authentication, making the server vulnerable to DoS attacks. The vulnerability has been fixed by improving the URL validation and adding additional checks of the resource the URL points to before downloading it.




Original Source


Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24901

Sources (Detail)


Alert History


If you want to see full details history, please login or register. Date
I ..

Support the originator by clicking the read the rest link below.
24901 improper validation apple certificate
Read The Rest from the original source
security-database.com

Related News

Be in Touch

All Rights Reserved #1 Source for Cyber Security News, Reports and Threat Intelligence
Powered By The Internet!!!!