CVE-2017-7192

Published: 2017-04-06T14:59Z

Last Modified: 2024-11-21T03:31Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

WebSocket.swift in Starscream before 2.0.4 allows an SSL Pinning bypass because of incorrect management of the certValidated variable (it can be set to true but cannot be set to false). > MITRE Terms of Use apply – see LICENSE‑MITRE.txt