The seventh Zero Day Bug that has been exploited in assaults against iPhones and Macs since the year’s beginning has been fixed by Apple with security patches.
Apple acknowledged they are aware of Zero Day Bug allegations claiming that this security hole could have been actively exploited” in security warnings released on Monday.
A maliciously constructed program may be able to execute arbitrary code with kernel privileges thanks to the flaw (tagged as CVE-2022-32917).
It was reported to Apple by an unnamed researcher, and it was fixed with better bounds checks in iPadOS 15.7, iOS 15.7, macOS Monterey 12.6, and macOS Big Sur 11.7.
After issuing additional security updates on August 31 to fix the same flaw on iOS versions running on older iPhones and iPads, Apple also backported remedies for a second zero-day (CVE-2022-32894) to Macs running macOS Big Sur 11.7.
Update Your Macs And iPhones To Zero Day Bug
Apple hasn’t yet provided any details about these Zero Day Bug assaults, despite the fact that the company acknowledged active exploitation of this issue in the wild.
Apple’s decision to withhold this information suggests that it wants to provide as many users as possible the opportunity to fix their systems before other attackers create their own exploits and begin employing them in attacks on vulnerable Macs and iPhones. Installing these security upgrades as soon as you can is still strongly encouraged in order to thwart attack efforts, even if it is likely that this zero-day was only utilized in highly-targeted attacks.
iPhone 6s and after, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and iPad mini 4 and iPod touch (7th generation), and Macs running macOS Big Sur 11.7 and macOS Monterey 12.6 are all included in the full list of impacted devices.