CVE-2020-27929: Medium severity apple ios and ipados vulnerability

Q: What is the vulnerability ID for this FaceTime issue?

The vulnerability ID for this FaceTime issue is CVE-2020-27929.

Q: What is the title of this FaceTime vulnerability?

The title of this FaceTime vulnerability is 'FaceTime. A logic issue existed in the handling of Group FaceTime calls. The issue was addressed with improved state management.'

Q: What software is affected by this vulnerability?

The FaceTime vulnerability affects Apple iOS versions up to, but not including, 12.4.9.

Q: How was this vulnerability addressed?

This FaceTime vulnerability was addressed with improved state management.

Q: Where can I find more information about this vulnerability?

You can find more information about this FaceTime vulnerability on the Apple support website. Please refer to the following link: https://support.apple.com/en-us/HT211940

Published Nov 5, 2020

Updated

FaceTime. A logic issue existed in the handling of Group FaceTime calls. The issue was addressed with improved state management.

Other sources

A logic issue existed in the handling of Group FaceTime calls. The issue was addressed with improved state management. This issue is fixed in iOS 12.4.9. A user may send video in Group FaceTime calls without knowing that they have done so.

Credit

James P@@Jam_Penn

Affected Software

2 affected componentsFixes available

Apple iOS and iPadOS<12.4.9

12.4.9

iPhone OS<12.4.9

Event History

Dec 8, 2020

CVE Published

via MITRE·08:13 PM

Data Sourced

via MITRE·08:13 PM

DescriptionWeakness

Parent advisories

This vulnerability appears in the following advisories.

HT211940

Peer vulnerabilities

Found alongside the following vulnerabilities.

Frequently Asked Questions

What is the vulnerability ID for this FaceTime issue?

The vulnerability ID for this FaceTime issue is CVE-2020-27929.

What is the title of this FaceTime vulnerability?