CVE-2019-8760: This issue was addressed by improving Face ID machine learning models. This issue is fixed in iOS 13. A 3D model constru
mediumvulnerability
security
Summary
CVE-2019-8760 is a vulnerability in Face ID (Apple's facial recognition system) where a 3D model made to look like an enrolled user could trick the system into unlocking a device. The vulnerability is classified as an improper authentication issue (CWE-287, a weakness in how systems verify identity).
Solution / Mitigation
This issue is fixed in iOS 13. The fix was addressed by improving Face ID machine learning models (the AI algorithms that help Face ID recognize faces).
Vulnerability Details
CVSS Score
6.8(medium)
EPSS (30-day exploit probability)
EPSS: 0.1%
Classification
Attack Type
Model Evasion
Attack SophisticationModerate
Impact (CIA+S)
integrity
AI Component TargetedModel
Affected Vendors
Apple
Related Issues
Original source: https://nvd.nist.gov/vuln/detail/CVE-2019-8760
First tracked: February 15, 2026 at 08:53 PM
Classified by LLM (prompt v3) · confidence: 85%