Insecure Exchange Rate Retrieval in iOS Prior to 11.2

Insecure Exchange Rate Retrieval in iOS Prior to 11.2

CVE-2017-2411 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

In iOS before 11.2, exchange rates were retrieved from HTTP rather than HTTPS. This was addressed by enabling HTTPS for exchange rates.

Learn more about our Cis Benchmark Audit For Apple Ios.