Skip to content

Home ยป Apple releases security patch to close huge vulnerability

Apple releases security patch to close huge vulnerability

Apple has released a fix for a zero-day vulnerability that attackers can use to take full control of an iPhone, iPad, or computer running macOS Monterey. The tech giant’s security advisory is rather sparse in detail, but CVE-2022-3289 is identified as a vulnerability discovered by an anonymous researcher. It states that the vulnerability could be exploited “to execute arbitrary code with kernel privileges,” meaning that attackers could act as a user and gain administrative control over the target device. The company states that it is aware that the vulnerability may have already been exploited.

In addition, Apple has also released a fix for a vulnerability affecting WebKit, the engine used by Safari, Mail, and many other iOS and macOS apps. According to the company, this allows attackers to execute code arbitrarily and can therefore be used to download more malware, among other things. As with the first vulnerability, Apple thanks an anonymous researcher for discovering this vulnerability – she also knows that it may have already been used to compromise iOS and Mac devices. Both flaws are present in macOS Monterey 12.5.1, and Apple has released a patch for the operating system. They both affect the same set of iPhones and iPads, specifically: iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch ( 7th generation). generation).

Click here for more Tech News

Leave a Reply

Your email address will not be published.