Security News > 2023 > October > Apple fixes iOS Kernel zero-day vulnerability on older iPhones

Apple fixes iOS Kernel zero-day vulnerability on older iPhones
2023-10-12 16:40

Apple has published security updates for older iPhones and iPads to backport patches released one week ago, addressing two zero-day vulnerabilities exploited in attacks.

The first zero-day is a privilege escalation vulnerability caused by a weakness in the XNU kernel that can let local attackers elevate privileges on vulnerable iPhones and iPads.

Apple has now also fixed the issue in iOS 16.7.1 and iPadOS 16.7.1 with improved checks, but it has yet to reveal who discovered and reported the flaw.

Apple emergency update fixes new zero-day used to hack iPhones.

Apple backports BLASTPASS zero-day fix to older iPhones.

Apple opens 2024 applications to get 'security research' iPhones.


News URL

https://www.bleepingcomputer.com/news/security/apple-fixes-ios-kernel-zero-day-vulnerability-on-older-iphones/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Apple 128 559 4053 1528 2429 8569
Kernel 4 2 8 5 0 15