![]() ![]() However, Apple has confirmed that devices that are running on iOS 12 are not affected by the 2nd exploit, referred to in CVE-2022-32894. ![]() To recall, the company rolled out an update last month, to fix a couple of security issues in iOS 15.6.1, iPadOS 15.6.1 and macOS Monterey 12.5.1. The number and the description of the bug might sound similar to the one referenced in our previous article, that's because it is. The security issue has reference number CVE-2022-32893. This might explain why the company jumped to fix the bug on old phones, to prevent more users from being impacted by the issue. The release notes published by Apple indicate that the vulnerability may have been exploited by a threat actor, though it doesn't go into further details about the same. The vulnerability was an out-of-bounds write issue, which Apple has addressed with improved bounds checking. The issue has been filed under 243557 at WebKit Bugzilla. Since the issue is related to the WebKit engine it not only impacts Safari, but also includes all apps that rely on it, especially other web browsers. ADVERTISEMENT iOS 12.5.6 update fixes a security issue in older iPhones and iPadsĪ support page on the Cupertino company's website describes the issue as follows: "Processing maliciously crafted web content may lead to arbitrary code execution." In other words, the bug could have allowed attackers to execute malicious code in apps for example, it may allow a website to run a malware script. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |