PT-2021-18923 · Apple · Ios+1
Wish Wu
+1
·
Published
2021-08-24
·
Updated
2023-01-09
·
CVE-2021-30863
CVSS v3.1
6.8
Medium
| Vector | AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
iOS versions prior to 15
iPadOS versions prior to 15
Description
The issue allows a 3D model constructed to look like the enrolled user to authenticate via Face ID. This is due to inadequate anti-spoofing models. The estimated number of potentially affected devices worldwide is not specified.
Recommendations
For iOS versions prior to 15, update to iOS 15 or later to resolve the issue.
For iPadOS versions prior to 15, update to iPadOS 15 or later to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Ios
Ipados