CVE-2016-2268

Name of the Vulnerable Software and Affected Versions Dell SecureWorks app version prior to 2.1 for iOS

Description The issue allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate, due to the app not validating SSL certificates.

Recommendations For versions prior to 2.1, update to version 2.1 or later to resolve the issue. As a temporary workaround, consider disabling the use of SSL connections in the app until a patch is available. Restrict access to sensitive information to minimize the risk of exploitation.