Home / Early Warning / Cybersecurity Highlights / Critical vulnerability in SSL affects thousands of iOS apps

Critical vulnerability in SSL affects thousands of iOS apps

04/20/2015
Ivan Leichtling, from Yelp, has discovered a vulnerability in the open source library AFNetworking, which provides network functionality to iOS and iOS X products. The vulnerability could allow to bypass SSL protection, due to a flawed verification of the domains included in the certificate shown by servers.

This library is highly used, and approximately 25,000 apps for iOS could be affected by the flaw.