Apple · Ios · CVE-2017-2397
**Name of the Vulnerable Software and Affected Versions**
iOS versions prior to 10.3
**Description**
The issue involves the `Accounts` component and allows physically proximate attackers to discover an Apple ID by reading an iCloud authentication prompt on the lock screen. This is due to a lack of protection for service data and weaknesses in authentication when the screen is locked.
**Recommendations**
For iOS versions prior to 10.3, update to a version 10.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the lock screen to minimize the risk of exploitation.