Cache Encryption Key Vulnerability in CFNetwork on Apple iOS

Cache Encryption Key Vulnerability in CFNetwork on Apple iOS

CVE-2015-5898 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

CFNetwork in Apple iOS before 9 relies on the hardware UID for its cache encryption key, which makes it easier for physically proximate attackers to obtain sensitive information by obtaining this UID.

Learn more about our Cis Benchmark Audit For Apple Ios.