New Delhi, Sep 14 (IANS) Apple has fixed fresh vulnerabilities in iOS and macOS, including a zero-day flaw being actively exploited by hackers.
The zero-day flaw, known as CVE-2022-32917, allows a malicious app to run arbitrary code on an affected device with kernel privileges, Apple said in a security update.
Apple fixed the bug in updates for iOS 15.7 and iPadOS 15.7, macOS Monterey 12.6 and macOS Big Sur 11.7.
Apple warned that it is aware that this flaw “may have been actively exploited”.
According to TechCrunch, this is the eighth zero-day vulnerability fixed by Apple this year.
In addition to these fixes, Apple also released a fix for a Safari browser flaw that could lead to address bar spoofing.
The security fixes were released along with iOS 16, which brings several security and privacy features, including support for Apple Passkeys and Lockdown Mode.
“Keeping your software up to date is one of the most important things you can do to maintain your Apple product’s security,” said the company.
After a software update is installed for iOS, iPadOS, tvOS, and watchOS, it cannot be downgraded to the previous version.
Last month, Apple released new software updates for iPhones, iPads and Macs to fix two security vulnerabilities known by the tech giant to be actively exploited by attackers.
The two vulnerabilities were found in WebKit, the browser engine that powers Safari and other apps, and the kernel, essentially the operating system’s core.
The tech giant had said the WebKit bug could be exploited if a vulnerable device accessed or processed “maliciously crafted web content (that) may lead to arbitrary code execution”.
(Except for the headline, the rest of this IANS article is un-edited)
For more technology news, product reviews, sci-tech features and updates, keep reading Digit.in
Stay connected with us on social media platform for instant update click here to join our Twitter, & Facebook
We are now on Telegram. Click here to join our channel (@TechiUpdate) and stay updated with the latest Technology headlines.
For all the latest Technology News Click Here
For the latest news and updates, follow us on Google News.
Denial of responsibility! NewsAzi is an automatic aggregator around the global media. All the content are available free on Internet. We have just arranged it in one platform for educational purpose only. In each content, the hyperlink to the primary source is specified. All trademarks belong to their rightful owners, all materials to their authors. If you are the owner of the content and do not want us to publish your materials on our website, please contact us by email – [email protected]. The content will be deleted within 24 hours.
