Less than a week after Cult of Mac is reporting another such bypass, which they claim was actually added with the update., the purpose of which was to fix a lock screen bypass,
The procedure for the bypass is complicated and requires a second device:
- Call another device you have nearby from a locked iPhone using Siri or voice control
- Tap the FaceTime button
- When the FaceTime app appears, hit the sleep/wake button
- Unlock the iPhone again
- Answer the call on the other device, then immediately end it
- After a few seconds, you’ll be taken to the Phone app
While it's complicated and you can't deviate much from the above script, Cult of Mac calls it a serious vulnerability, and it probably is. It makes one reasonable to presume that there are still other, perhaps simpler, bypasses available.
There is also a video demonstration which mostly shows how complicated the procedure is.