Actively Exploited in the Wild

This vulnerability is being actively exploited in the wild.

Primary

Context

Apple Group FaceTime Vulnerability in iOS and macOS

Vulnerability

Exploited

Patched

A logic issue in Group FaceTime calls on Apple devices running iOS 12.1.4 or macOS Mojave 10.14.3 may allow the caller to cause the recipient's device to answer the call without user interaction. This vulnerability was addressed with improved state management.

Impact

Exploitation of this vulnerability allows the caller to initiate a Group FaceTime call that is automatically answered by the recipient, bypassing user consent.

Remediation

Users can update to iOS 12.1.4 or macOS Mojave 10.14.3 Supplemental Update to address this vulnerability. Instructions for updating can be found on the Apple Support website.

Added: May 15, 2026, 10:47 AM

Updated: May 15, 2026, 10:47 AM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

1.3

exploitability

6.4

remediation

7.7

relevance

0.0

threat

8.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

1.3

exploitability

6.4

remediation

7.7

relevance

0.0

threat

8.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Actively Exploited in the Wild

Apple Group FaceTime Vulnerability in iOS and macOS

Vulnerability

Impact

Remediation

Affected Products

Apple iOS

Apple macOS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating