VYPR
Unrated severityNVD Advisory· Published Nov 15, 2007· Updated Jun 16, 2026

CVE-2007-4680

CVE-2007-4680

Description

CFNetwork in Apple Mac OS X 10.3.9 and 10.4 through 10.4.10 does not properly validate certificates, which allows remote attackers to spoof trusted SSL certificates via a man-in-the-middle attack.

Affected products

11
  • Apple Inc./Mac OS X10 versions
    cpe:2.3:o:apple:mac_os_x:10.4.1:*:*:*:*:*:*:*+ 9 more
    • cpe:2.3:o:apple:mac_os_x:10.4.1:*:*:*:*:*:*:*
    • cpe:2.3:o:apple:mac_os_x:10.4.2:*:*:*:*:*:*:*
    • cpe:2.3:o:apple:mac_os_x:10.4.3:*:*:*:*:*:*:*
    • cpe:2.3:o:apple:mac_os_x:10.4.4:*:*:*:*:*:*:*
    • cpe:2.3:o:apple:mac_os_x:10.4.5:*:*:*:*:*:*:*
    • cpe:2.3:o:apple:mac_os_x:10.4.6:*:*:*:*:*:*:*
    • cpe:2.3:o:apple:mac_os_x:10.4.7:*:*:*:*:*:*:*
    • cpe:2.3:o:apple:mac_os_x:10.4.8:*:*:*:*:*:*:*
    • cpe:2.3:o:apple:mac_os_x:10.4.9:*:*:*:*:*:*:*
    • (no CPE)range: 10.3.9, 10.4 - 10.4.10
  • Range: 10.3.9, 10.4 - 10.4.10

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.