Security News > 2023 > October > Apple fixes iOS Kernel zero-day vulnerability on older iPhones
2023-10-12 16:40
Apple has published security updates for older iPhones and iPads to backport patches released one week ago, addressing two zero-day vulnerabilities exploited in attacks.
The first zero-day is a privilege escalation vulnerability caused by a weakness in the XNU kernel that can let local attackers elevate privileges on vulnerable iPhones and iPads.
Apple has now also fixed the issue in iOS 16.7.1 and iPadOS 16.7.1 with improved checks, but it has yet to reveal who discovered and reported the flaw.
Apple emergency update fixes new zero-day used to hack iPhones.
Apple backports BLASTPASS zero-day fix to older iPhones.
Apple opens 2024 applications to get 'security research' iPhones.
News URL
Related news
- Apple zero-day vulnerability exploited to target iPhone users (CVE-2025-24085) (source)
- Apple Patches Actively Exploited Zero-Day Affecting iPhones, Macs, and More (source)
- Apple Patches Actively Exploited iOS Zero-Day CVE-2025-24200 in Emergency Update (source)
- Zero-Day Vulnerability in Ivanti VPN (source)
- Apple fixes this year’s first actively exploited zero-day bug (source)
- Apple plugs security hole in its iThings that's already been exploited in iOS (source)
- SLAP, Apple, and FLOP: Safari, Chrome at risk of data theft on iPhone, Mac, iPad Silicon (source)
- Week in review: Apple 0-day used to target iPhones, DeepSeek’s popularity exploited by scammers (source)
- Google fixes Android kernel zero-day exploited in attacks (source)
- First Apple-notarized porn app available to iPhone users in Europe (source)