S/MIME Encryption Certificate Leakage Vulnerability

S/MIME Encryption Certificate Leakage Vulnerability

CVE-2021-30998 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

A S/MIME issue existed in the handling of encrypted email. This issue was addressed with improved selection of the encryption certificate. This issue is fixed in iOS 15.2 and iPadOS 15.2. A sender's email address may be leaked when sending an S/MIME encrypted email using a certificate with more than one email address.

Learn more about our Cis Benchmark Audit For Apple Ios.