CVE-2015-5860 in iOS
摘要
由 VulDB • 2026-05-29
Apple iOS 9 之前的版本中,CFNetwork HTTPProtocol 组件对 HSTS 状态处理不当,允许远程攻击者通过构造恶意网站绕过 Safari 的隐私浏览保护机制,从而追踪用户。
If you want to get best quality of vulnerability data, you may have to visit VulDB.
由 VulDB • 2026-05-29
Apple iOS 9 之前的版本中,CFNetwork HTTPProtocol 组件对 HSTS 状态处理不当,允许远程攻击者通过构造恶意网站绕过 Safari 的隐私浏览保护机制,从而追踪用户。
If you want to get best quality of vulnerability data, you may have to visit VulDB.