CVE-2021-1756

2021-04-0217:52:23

apple

www.cve.org

lock screen

contacts

ios 14.4

ipados 14.4

physical access

AI Score

3.4

Confidence

Low

EPSS

0.001

Percentile

25.0%

JSON

A lock screen issue allowed access to contacts on a locked device. This issue was addressed with improved state management. This issue is fixed in iOS 14.4 and iPadOS 14.4. An attacker with physical access to a device may be able to see private contact information.

CNA Affected

[
  {
    "product": "iOS and iPadOS",
    "vendor": "Apple",
    "versions": [
      {
        "lessThan": "14.4",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

support.apple.com/en-us/HT212146