53 matches found
Brave Software: iOS Brave Playlist "Open in Private Tab" bypasses FaceID requirement for Private Tabs
A vulnerability was discovered in the Brave browser for iOS where adding or opening a song in the Brave playlist and holding for the "Open in new Private Tab" option bypassed the Face ID or passcode requirement for accessing Private Tabs. This affected Brave iOS version 1.88 and iOS version 26.4....
CVE-2025-46286
A logic issue was addressed with improved validation. This issue is fixed in iOS 26.2 and iPadOS 26.2. Restoring from a backup may prevent passcode from being required immediately after Face ID enrollment...
EUVD-2025-206272
A logic issue was addressed with improved validation. This issue is fixed in iOS 26.2 and iPadOS 26.2. Restoring from a backup may prevent passcode from being required immediately after Face ID enrollment...
CVE-2025-46286
A logic issue was addressed with improved validation. This issue is fixed in iOS 26.2 and iPadOS 26.2. Restoring from a backup may prevent passcode from being required immediately after Face ID enrollment...
CVE-2025-46286
A logic issue was addressed with improved validation. This issue is fixed in iOS 26.2 and iPadOS 26.2. Restoring from a backup may prevent passcode from being required immediately after Face ID enrollment...
CVE-2025-46286
A logic issue was addressed with improved validation. This issue is fixed in iOS 26.2 and iPadOS 26.2. Restoring from a backup may prevent passcode from being required immediately after Face ID enrollment...
CVE-2025-46286
CVE-2025-46286 describes a logic issue in validation within BiometricKit affecting iOS and iPadOS prior to 26.2. The issue could delay the passcode requirement after Face ID enrollment when restoring from a backup. Apple’s advisories state the fix is included in iOS 26.2 and iPadOS 26.2. Impact i...
PT-2026-1803
Name of the Vulnerable Software and Affected Versions iOS versions prior to 26.2 iPadOS versions prior to 26.2 Description A logic issue exists related to validation. Restoring from a backup may prevent a passcode from being required immediately after Face ID enrollment. Recommendations Update to...
EUVD-2021-17780
Malware in sbrugna...
EUVD-2019-18150
Malware in sbrugna...
Malicious code in react-native-ezio-face-id-sdk (npm)
The package react-native-ezio-face-id-sdk was found to contain malicious code...
MAL-2025-31816 Malicious code in react-native-ezio-face-id-sdk (npm)
The package react-native-ezio-face-id-sdk was found to contain malicious code...
CVE-2021-30863
This issue was addressed by improving Face ID anti-spoofing models. This issue is fixed in iOS 15 and iPadOS 15. A 3D model constructed to look like the enrolled user may be able to authenticate via Face ID...
CVE-2019-8760
This issue was addressed by improving Face ID machine learning models. This issue is fixed in iOS 13. A 3D model constructed to look like the enrolled user may authenticate via Face ID...
iOS 18 is out. Here are the new privacy and security features
On September 16, 2024, Apple released iOS 18. Besides a lot of exciting new features, iOS 18 comes with some privacy and security enhancements. One of the most promising new features is the new Passwords app. Built on the foundation of Apple's password management system Keychain, Passwords makes ...
CVE-2023-41069
This issue was addressed by improving Face ID anti-spoofing models. This issue is fixed in iOS 17 and iPadOS 17. A 3D model constructed to look like the enrolled user may authenticate via Face ID...
CVE-2023-41069
This issue was addressed by improving Face ID anti-spoofing models. This issue is fixed in iOS 17 and iPadOS 17. A 3D model constructed to look like the enrolled user may authenticate via Face ID...
Design/Logic Flaw
This issue was addressed by improving Face ID anti-spoofing models. This issue is fixed in iOS 17 and iPadOS 17. A 3D model constructed to look like the enrolled user may authenticate via Face ID...
CVE-2023-41069
This issue was addressed by improving Face ID anti-spoofing models. This issue is fixed in iOS 17 and iPadOS 17. A 3D model constructed to look like the enrolled user may authenticate via Face ID...
CVE-2023-41069
CVE-2023-41069 pertains to Apple Face ID anti-spoofing. A 3D model constructed to resemble the enrolled user could authenticate, exposing biometric security. Apple states this was addressed by improving Face ID anti-spoofing models and it is fixed in iOS 17 and iPadOS 17. The vulnerability affect...