Unrated severityNVD Advisory· Published Oct 3, 2006· Updated Jun 16, 2026

CVE-2006-4390

Description

CFNetwork in Apple Mac OS X 10.4 through 10.4.7 and 10.3.9 allows remote SSL sites to appear as trusted sites by using encryption without authentication, which can cause the lock icon in Safari to be displayed even when the site's identity cannot be trusted.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Apple Inc./Mac OS X10 versions
cpe:2.3:o:apple:mac_os_x:10.3.9:*:*:*:*:*:*:*+ 9 more
- cpe:2.3:o:apple:mac_os_x:10.3.9:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.4:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.4.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.4.2:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.4.3:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.4.4:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.4.5:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.4.6:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.4.7:*:*:*:*:*:*:*
- (no CPE)range: 10.4 through 10.4.7, 10.3.9

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000

CVE-2006-4390

Description

AI Insight

Affected products

Patches

Vulnerability mechanics

References

News mentions