Apple Products Multiple Vulnerabilities
Release Date: 18 Aug 2022
RISK: Extremely High Risk
TYPE: Operating Systems - Mobile & Apps
Multiple vulnerabilities were identified in Apple Products. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution on the targeted system.
Note:
CVE-2022-32893 and CVE-2022-32894 are being exploited in the wild.
CVE-2022-32893 vulnerability can exploit the WebKit that allows crafted web content to run arbitrary code on the targeted system.
CVE-2022-32894 vulnerability can exploit the Kernel that allows malicious apps to run arbitrary code with kernel privileges on the targeted system.
Impact
- Remote Code Execution
System / Technologies affected
- Versions prior to macOS Monterey 12.5.1
- Versions prior to iOS 15.6.1
- Versions prior to iPadOS 15.6.1
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- macOS Monterey 12.5.1
- iOS 15.6.1
- iPadOS 15.6.1
沒有留言:
發佈留言