CVE-2016-4686

Name of the Vulnerable Software and Affected Versions iOS versions prior to 10.1

Description The issue involves the Contacts component, which does not prevent an app's Address Book access after access revocation. This is related to insufficient access control to the Address Book application, potentially allowing a local attacker to access protected information.

Recommendations For iOS versions prior to 10.1, update to version 10.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the Contacts component until a patch is available.