NFC Tag Authentication Vulnerability in iOS 14.5 and iPadOS 14.5

NFC Tag Authentication Vulnerability in iOS 14.5 and iPadOS 14.5

CVE-2021-1863 · LOW Severity

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

An issue existed with authenticating the action triggered by an NFC tag. The issue was addressed with improved action authentication. This issue is fixed in iOS 14.5 and iPadOS 14.5. A person with physical access to an iOS device may be able to place phone calls to any phone number.

Learn more about our Cis Benchmark Audit For Apple Ios.