CVE-2016-7664
Description
iOS before 10.2 Accessibility lockscreen flaw allows physically proximate attackers to access photos and contacts via excessive options.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
iOS before 10.2 Accessibility lockscreen flaw allows physically proximate attackers to access photos and contacts via excessive options.
Vulnerability
The vulnerability exists in the Accessibility component of iOS versions prior to 10.2. During lockscreen access, excessive options are available, allowing a physically proximate attacker to obtain sensitive photo and contact information. Affected devices include iPhone 5 and later, iPad 4th generation and later, iPod touch 6th generation and later [1].
Exploitation
An attacker must have physical proximity to the locked device. By leveraging the excessive options presented on the lockscreen, the attacker can navigate to access photos and contacts without authentication. No special tools or authentication are required beyond physical access.
Impact
Successful exploitation results in unauthorized disclosure of sensitive photo and contact information. The attacker gains access to personal data without unlocking the device, compromising confidentiality.
Mitigation
Apple addressed this issue in iOS 10.2, released on December 12, 2016 [1]. Users should update to iOS 10.2 or later. No workarounds are documented; updating is the recommended mitigation.
AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: <10.2
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- www.securityfocus.com/bid/94850nvdThird Party AdvisoryVDB Entry
- support.apple.com/HT207422nvdVendor Advisory
- www.securitytracker.com/id/1037429nvd
News mentions
0No linked articles in our index yet.