A permissions issue existed in the handling of motion and orientation data. This issue was addressed with improved restrictions. This issue is fixed in iOS 12.2. A website may be able to access sensor information without user consent.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple iphone os |
Apple rolls out repairs for 51 iOS flaws, including nasty ones, plus fixes for macOS Bad news: Google drops macOS zero-day after Apple misses bug deadline. Good news: It's fiddly to exploit
In addition to teasing the world with a glimpse of subscriptions services for newspapers and magazines, gaming, and video entertainment, Apple on Monday released iOS 12.2, which patches 51 security vulnerabilities. The fruit-themed company's fixes cover some serious flaws and should be applied as soon as possible. Among the most troubling vulnerabilities is a ReplayKit API flaw (CVE-2019-8566) that allows a malicious application to access the microphone on an iPhone, iPad or iPod touch without t...