Security News > 2022 > December > Microsoft dishes the dirt on Apple’s “Achilles heel” shortly after fixing similar Windows bug

Microsoft dishes the dirt on Apple’s “Achilles heel” shortly after fixing similar Windows bug
2022-12-20 19:59

When we woke up this morning, our cybersecurity infofeed was awash with "News" that Apple had just patched a security hole variously described a "Gnarly bug", a "Critical flaw" that could leave your Macs "Defenceless", and the "Achilles' heel of macOS".

This isn't a new bug, it's just some new information about a bug that Apple fixed last week.

CVE-2022-44698: Windows SmartScreen Security Feature Bypass Vulnerability This bug is also known to have been expoited in the wild.

To be fair to Microsoft, the researcher who responsibly disclosed the Gatekeeper flaw to Apple, and who wrote the just-published report, didn't use the words "Critical" or "Defenceless" to describe either the bug or the condition in which it placed your Mac.

Although naming the bug Achilles and headlining it as as an Achilles' heel was probably a metaphorical leap too far.

In both these cases - Microsoft's own zero-day bug, and Apple's bug as found by Microsoft - the security bypass flaws are now patched.


News URL

https://nakedsecurity.sophos.com/2022/12/20/microsoft-dishes-the-dirt-on-apples-achilles-heel-shortly-after-fixing-similar-windows-bug/

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2022-12-13 CVE-2022-44698 Improper Handling of Exceptional Conditions vulnerability in Microsoft products
Windows SmartScreen Security Feature Bypass Vulnerability
0.0

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Microsoft 365 50 1369 2820 161 4400