|

Apple Patches Another High Severity Zero-Day Flaw Exploited in the Wild

ByChad

Apple has released an urgent update to address a critical zero-day vulnerability that is being exploited in the wild. The vulnerability is tracked as CVE-2021-30807 and affects iOS, iPadOS, and macOS devices. This vulnerability exists due to a memory corruption issue in the IOMobileFrameBuffer component, a kernel extension for managing the screen framebuffer. It allows an attacker to execute arbitrary code with kernel privileges.

Apple has released this update at a time when there are reports of a vulnerability in iMessage used by the Pegasus spyware for surveillance on dissidents, activists, human rights lawyers, and opposition politicians using Apple devices. Although the current Apple advisory does not mention this update includes a fix for the iMessage vulnerability also, few researchers believe in this possibility.

https://www.secpod.com/blog/apple-patches-zero-day-vulnerability-exploited-in-the-wild/?utm_source=Apple+update+July+2021&utm_medium=security+update&utm_campaign=Apple+update+July+2021

Discover more from

Subscribe to get the latest posts sent to your email.

Disclaimer
The views and opinions expressed in this article are solely my own and do not necessarily reflect the views, opinions, or policies of my current or any previous employer, organization, or any other entity I may be associated with.

Similar Posts