Lock Screen Bypass Vulnerability in Apple iOS Certificate UI

Lock Screen Bypass Vulnerability in Apple iOS Certificate UI

CVE-2015-3756 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:N

The Certificate UI in Apple iOS before 8.4.1 does not prevent X.509 certificate acceptance within the lock screen, which allows physically proximate attackers to establish arbitrary certificate trust relationships by completing a dialog.

Learn more about our Cis Benchmark Audit For Apple Ios.