CVE-2014-4383

Name of the Vulnerable Software and Affected Versions Apple iOS versions prior to 8 Apple TV versions prior to 7

Description The issue allows man-in-the-middle attackers to spoof a device's update status. This is achieved via a crafted Last-Modified HTTP response header.

Recommendations For Apple iOS versions prior to 8, update to version 8 or later to resolve the issue. For Apple TV versions prior to 7, update to version 7 or later to resolve the issue.