cvedb.io
CVE-2016-4644
MEDIUM · CVSS 6.5
EPSS exploitation probability: 0%
Published 2019-01-11T18:29:00.453 · Last modified 2026-06-17T00:47:57.180

Summary

In iOS before 9.3.3, tvOS before 9.2.2, and OS X El Capitan before v10.11.6 and Security Update 2016-004, a downgrade issue existed with HTTP authentication credentials saved in Keychain. This issue was addressed by storing the authentication types with the credentials.

Affected products

apple — apple_tv

Does this affect you?

Add your gear to cvedb and we'll alert you only when apple ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.