Starscream Project Starscream — known CVE vulnerabilities
Every CVE whose affected-product data names Starscream Project Starscream, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2017-5887 — CVSS 7.5 (high): WebSocket.swift in Starscream before 2.0.4 allows an SSL Pinning bypass because pinning occurs in the stream function (this is too late…
CVE-2017-7192 — CVSS 7.5 (high): WebSocket.swift in Starscream before 2.0.4 allows an SSL Pinning bypass because of incorrect management of the certValidated variable (it…