CVE-2015-1085
AppleKeyStore in iOS before 8.3 exposes a passcode-confirmation interface that can be leveraged by a crafted app to verify user passcodes. The issue stems from insufficient entitlement checks, enabling a malicious application to guess the user’s passcode. Apple released iOS 8.3 with mitigations: ...