Apple fixes two zero-day vulnerabilities in macOS Monterey, iOS and iPadOS

Apple fixes two zero-day vulnerabilities in macOS Monterey, iOS and iPadOS

PARIS, April 1 (Benin News/EP) –

Apple released patches for two critical zero-day vulnerabilities in its devices, giving attackers the ability to Access the internal parts of its operating system and steal information.

Zero-day attacks are considered bugs for which there is no specific solution because the developers were unaware of its existence before exploiting the vulnerability.

Specifically, Apple released macOS Monterey 12.3.1 . security update for There 15.4.1 For iOS and iPadOSWhich successfully fixed bugs known as CVE-2022-22674 and CVE-2022-22675.

As explained by Apple on its support page, the first vulnerability, CVE-2022-22674, which macOS resides in Montereystems from a problem reading outside the system bounds.

This allows free access to kernel memory, giving hackers the ability to execute malicious code, In this case, the problem was resolved by improving the input validation.

On the other hand, CVE-2022-22675 macOS Monterey and iOS 15.4.1 and iPadOS 15.4.1 i.e. iPhone 6s and later models, all iPad Pro models, iPad Air 2 and later, both iPad 5th generation and later affects. iPad mini 4 and later, and iPod touch 7th generation.

In this case the effect was as follows. An application can execute arbitrary code Because of an out-of-bounds write issue, with kernel privileges.

In this case, the technology maker, which has accepted actively exploited Both of these vulnerabilities have been addressed by improving boundary checks.

It should be remembered that these Apple released another security patch with iOS 15.3.1 and iPadOS 15.3.1 last February to fix a vulnerability (CVE-2022-22620). In webkit browser engine.

Also, in late January, the manufacturer applied another security patch to prevent leaks. confidential information of users.

It did so with the third update to iOS 15.3. and fixing a vulnerability in the IndexedDB application programming interface (API) in iPadOS 15.3, your native browser, and any browser that uses WebKit on iOS 15 and iPadOS 15.

Leave a Reply

Your email address will not be published. Required fields are marked *