CVE-2015-3756 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2015-3756

CWE

https://cwe.mitre.org/data/definitions/254.html

The Certificate UI in Apple iOS before 8.4.1 does not prevent X.509 certificate acceptance within the lock screen, which allows physically proximate attackers to establish arbitrary certificate trust relationships by completing a dialog.

Affected Software

Name	Vendor	Start Version	End Version
Iphone_os	Apple	*	8.4 (including)

References

http://lists.apple.com/archives/security-announce/2015/Aug/msg00002.html
http://www.securityfocus.com/bid/76337
http://www.securitytracker.com/id/1033275
https://support.apple.com/kb/HT205030
http://lists.apple.com/archives/security-announce/2015/Aug/msg00002.html
http://www.securityfocus.com/bid/76337
http://www.securitytracker.com/id/1033275
https://support.apple.com/kb/HT205030