Apple fixed two zero-day vulnerabilities which were being exploited in the wild before the release of the iOS 12.1.4 security update. The first vulnerability is CVE-2019-7286 and the second affects the IOKit framework which “implements non-kernel access to I/O Kit objects”” Apple also fixed the highly-publicized snooping issue in FaceTime’s group call feature which allowed users to initiate a group call and listen in without the person answering the call or even being aware that their device’s microphone was activated.”
Source: https://www.bleepingcomputer.com/news/security/apple-patched-two-actively-exploited-zero-days-in-ios-1214/