CVE-2016-7664: Infoleak
First published: Mon Feb 20 2017(Updated: )
An issue was discovered in certain Apple products. iOS before 10.2 is affected. The issue involves the "Accessibility" component. which allows physically proximate attackers to obtain sensitive photo and contact information by leveraging the availability of excessive options during lockscreen access.
Credit: product-security@apple.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| iPhone OS | <=10.1.1 | |
| <=10.1.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2016-7664?
CVE-2016-7664 has been classified with a medium severity level due to the potential unauthorized access to sensitive information.
How do I fix CVE-2016-7664?
To remediate CVE-2016-7664, update your iOS device to version 10.2 or later.
Which Apple products are affected by CVE-2016-7664?
CVE-2016-7664 affects certain Apple products running iOS versions prior to 10.2.
What type of information can be accessed due to CVE-2016-7664?
CVE-2016-7664 allows attackers to potentially access sensitive photo and contact information.
Who is at risk from CVE-2016-7664?
Physically proximate attackers are at risk of exploiting CVE-2016-7664 to gain unauthorized access.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/references
- agent/severity
- agent/weakness
- agent/description
- agent/first-publish-date
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/source
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- agent/event
- vendor/apple
- canonical/iphone os
- version/iphone os/10.1.1