Apple · Ios · CVE-2017-13806
Name of the Vulnerable Software and Affected Versions:
iOS versions prior to 11
Description:
An issue was discovered in certain Apple products, specifically involving the "Profiles" component. The issue is that the component does not enforce the configuration profile's settings for whether pairings are allowed.
Recommendations:
For iOS versions prior to 11, consider restricting the use of the "Profiles" component until a fix is available. As a temporary workaround, review and manually enforce configuration profile settings for pairings to minimize potential risks.