High severity7.5NVD Advisory· Published Apr 6, 2017· Updated Jun 17, 2026
CVE-2017-7192
CVE-2017-7192
Description
WebSocket.swift in Starscream before 2.0.4 allows an SSL Pinning bypass because of incorrect management of the certValidated variable (it can be set to true but cannot be set to false).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
3- github.com/daltoniam/Starscream/commit/dbeb1190b8dcbff4f0b797f9e9d9b9b864d1f0d6nvdPatchThird Party Advisory
- github.com/daltoniam/Starscream/releases/tag/2.0.4nvdRelease NotesThird Party Advisory
- seclists.org/bugtraq/2017/Apr/66nvd
News mentions
0No linked articles in our index yet.