CVE-2016-7601

Name of the Vulnerable Software and Affected Versions iOS versions prior to 10.2

Description The issue is related to the Local Authentication component in the iOS operating system, which is associated with security setting errors. Exploitation of this issue may allow a local attacker to compromise the confidentiality, integrity, and availability of protected information by bypassing the screen lock time interval settings when the Touch ID prompt is visible.

Recommendations For iOS versions prior to 10.2, update to a version 10.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the Touch ID feature until a patch is available.