PT-2026-7771 · Apple · Ios+1
Nils Hanff
+1
·
Publicado
2026-02-11
·
Atualizado
2026-02-12
·
CVE-2026-20638
CVSS v3.1
5.5
Média
| Vetor | AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
iOS versions prior to 26.3
iPadOS versions prior to 26.3
Description
A logic issue existed where a user with Live Caller ID app extensions disabled could have identifying information leaked to those extensions. The issue was resolved through improved checks.
Recommendations
Update to iOS version 26.3 or later.
Update to iPadOS version 26.3 or later.
Correção
Improper Access Control
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ios
Ipados