HKCert
  

Apple iOS Zero-day Sensitive Information Disclosure Vulnerability

Release Date: 30 / 01 / 2019
Last Update: 30 / 01 / 2019
Criticality Level:  


A new zero-day vulnerability was discovered in Apple iOS FaceTime. This vulnerablity allow callers to hear audio and perhaps video without answering the call, even after actively dismissing the call. A remote user can exploit this vulnerability to trigger sensitive information disclosure on the targeted system.

  • Information Disclosure

Notes: No patch is currently available.

 

Apple has taken Group FaceTime offline until a fix can be provided.

Recommend disable FaceTime in iOS Settings until a fix can be provided.

 

Please refer to the link below for security update:

https://support.apple.com/en-us/HT201222