Apple Patch For New Exploitable Flaw In iOS

By   ISBuzz Team
Writer , Information Security Buzz | Oct 26, 2022 03:48 am PST

It has been reported that tech giant Apple on Monday rolled out updates to remediate a zero-day flaw in iOS and iPadOS that it said has been actively exploited in the wild. The weakness, given the identifier CVE-2022-42827, has been described as an out-of-bounds write issue in the Kernel, which could be abused by a rogue application to execute arbitrary code with the highest privileges.

Notify of
1 Expert Comment
Oldest Most Voted
Inline Feedbacks
View all comments
Paul Bischoff
Paul Bischoff , Privacy Advocate
October 26, 2022 11:49 am

Apple has been tight-lipped about the vulnerability, but any zero-day should be cause for concern, especially if it’s being exploited in the wild. If an attacker is able to write out of bounds, they could cause system crashes or execute arbitrary code in the kernel, which has high-level privileges. A lack of bounds checking commonly leads to buffer overflow attacks and off-by-one errors.

Last edited 1 year ago by Paul Bischoff

Recent Posts

Would love your thoughts, please comment.x