Vulnerabilities > Starscream Project

DATE	CVE	VULNERABILITY TITLE	RISK
2017-04-06	CVE-2017-7192	Improper Certificate Validation vulnerability in Starscream Project Starscream WebSocket.swift in Starscream before 2.0.4 allows an SSL Pinning bypass because of incorrect management of the certValidated variable (it can be set to true but cannot be set to false). network low complexity starscream-project CWE-295	5.0
2017-04-06	CVE-2017-5887	Improper Certificate Validation vulnerability in Starscream Project Starscream WebSocket.swift in Starscream before 2.0.4 allows an SSL Pinning bypass because pinning occurs in the stream function (this is too late; pinning should occur in the initStreamsWithData function). network low complexity starscream-project CWE-295	5.0

Vulnerabilities > Starscream Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Starscream Project"}]}