First published: Tue Aug 24 2021(Updated: )
A lock screen issue allowed access to contacts on a locked device. This issue was addressed with improved state management. This issue is fixed in iOS 15.2 and iPadOS 15.2. An attacker with physical access to a device may be able to see private contact information.
Credit: Akiva Fordsham Rishon Group cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Apple iPadOS | <15.2 | |
Apple iPhone OS | <15.2 | |
Apple iOS | <15.2 | 15.2 |
Apple iPadOS | <15.2 | 15.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2021-30956 is a lock screen issue in FaceTime that allowed access to contacts on a locked device.
CVE-2021-30956 was addressed with improved state management.
Devices running Apple iOS and iPadOS versions up to and exclusive of 15.2 are affected by CVE-2021-30956.
To fix CVE-2021-30956, update your device to Apple iOS or iPadOS version 15.2 or later.
You can find more information about CVE-2021-30956 on Apple's support page: https://support.apple.com/en-us/HT212976