Many of the other flaws also allow arbitrary code execution if the device opens a poisonous website, PDF or image file. 11 with iOS 15.0.2 and iPadOS 15.0.2 but not on Apple's other operating systems until this week. Nor is it clear why this flaw was patched on Oct.
It's not clear how this is being exploited or by whom. The flaws already under active attack received the catalog number CVE-2021-30883 and involves a memory-corruption issue that could lead to "arbitrary code execution" - that's hacking to you and me - with kernel privileges, the highest level of system power. Nor were they fixed in a security update for macOS Catalina, which also saw about 20 fixes but didn't get a new version number. Surprisingly, those flaws were not patched in an upgrade to macOS Big Sur, which saw about 20 flaws fixes and brings the previous Mac OS to version 11.6.1.
Among them were two concerning gameplay data and reported earlier this year by Russian researcher Denis Tokarev, who called out Apple last month for ignoring those issues as well as two others.
0 kommentar(er)
