S/MIME Credential Encryption Mishandling Vulnerability

S/MIME Credential Encryption Mishandling Vulnerability

CVE-2017-13860 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. The issue involves the "Mail Drafts" component. It allows man-in-the-middle attackers to read e-mail content by leveraging mishandling of S/MIME credential encryption.

Learn more about our Cis Benchmark Audit For Apple Ios.