Skip to main content

Twitter Kit

2 CVEs product

Monthly

CVE-2019-16263 HIGH POC This Week

The Twitter Kit framework through 3.4.2 for iOS does not properly validate the api.twitter.com SSL certificate. Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Apple Information Disclosure Twitter Kit
NVD GitHub
CVSS 3.1
7.4
EPSS
1.0%
CVE-2019-5431 MEDIUM This Month

This vulnerability was caused by an incomplete fix to CVE-2017-0911. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Apple CSRF Twitter Kit
NVD
CVSS 3.1
5.4
EPSS
0.4%
EPSS 1% CVSS 7.4
HIGH POC This Week

The Twitter Kit framework through 3.4.2 for iOS does not properly validate the api.twitter.com SSL certificate. Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Apple Information Disclosure Twitter Kit
NVD GitHub
EPSS 0% CVSS 5.4
MEDIUM This Month

This vulnerability was caused by an incomplete fix to CVE-2017-0911. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Apple CSRF Twitter Kit
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy