Credential Exposure in NetworkExtension VPN Configuration Logs

Credential Exposure in NetworkExtension VPN Configuration Logs

CVE-2015-1109 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

NetworkExtension in Apple iOS before 8.3 stores credentials in VPN configuration logs, which makes it easier for physically proximate attackers to obtain sensitive information by reading a log file.

Learn more about our Cis Benchmark Audit For Apple Ios.