Unrated severityNVD Advisory· Published Feb 2, 2012· Updated Jun 16, 2026
CVE-2011-3444
CVE-2011-3444
Description
Address Book in Apple Mac OS X before 10.7.3 automatically switches to unencrypted sessions upon failure of encrypted connections, which allows remote attackers to read CardDAV data by terminating an encrypted connection and then sniffing the network.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*range: <=10.7.2
- cpe:2.3:o:apple:mac_os_x:10.7.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.7.1:*:*:*:*:*:*:*
- (no CPE)range: <10.7.3
cpe:2.3:o:apple:mac_os_x_server:*:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:apple:mac_os_x_server:*:*:*:*:*:*:*:*range: <=10.7.2
- cpe:2.3:o:apple:mac_os_x_server:10.7.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x_server:10.7.1:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
2- lists.apple.com/archives/security-announce/2012/Feb/msg00000.htmlnvdVendor Advisory
- support.apple.com/kb/HT5130nvdVendor Advisory
News mentions
0No linked articles in our index yet.