iOS 13 security flaw allows easy bypass to iCloud Keychain passwords
iOS beta software always runs the risk of bugs & flaws, and the most recent of these has been discovered within the iCloud Keychain settings. It has been reported that Face and Touch ID both can be easily bypassed allowing access to the passwords protected within Keychain.
This vulnerability within the system appears to only affect the latest beta of iOS 13 (Beta 3) and the second Public Beta. It also has been discovered within the latest iPadOS updates too.
To bypass, it has been discovered that repeatedly pressing the ‘Website and App Passwords’ button will trick the system to allow you inside to access the data, even without successful authentication using Face ID or Touch ID. The user would need to authenticate to open the device in order to get the menu, but a second authentication to get into the setting seems to be not needed with this flaw.
Apple has been made aware of the issue, and the future beta update will hopefully patch this flaw in time for the September debut of both the systems to the public.