![]() ![]() On the other hand, the other two zero-day vulnerabilities have yet to be fixed by the Cupertino behemoth, telling the software developer that it was "still investigating.NuGet package - Selenium WebDriver ChromeDriver Tokarev also disclosed that he has already reported a total of four security flaws to the iPhone maker.Īs of writing, Apple has only released a security patch for two out of four, including one in iOS 14.7 and the latest from iOS 15.0.2. ![]() Read Also: Redesigned Apple TV Box Rumored to Have 'Plexiglass' Top | Could a Nintendo Switch Style Gaming Console Arrive as Well? Apple Security Flaws and Denis Tokarev What's more, the tech giant offered to "apologize for the inconvenience." The software developer asked the tech giant about the missing credit to him.Īs such, Apple responded to his inquiry, asking the flaw finder to keep the email thread confidential.īleeping Computer said in the same report that the Cupertino giant vowed to issue the credit in the upcoming security updates. Apple Zero-Day Flaw Finder Failed To Be CreditedĪpple Insider further reported that Tokarev went on to contact Apple after learning that the company already released a fix for the critical security flaw that he discovered. It is to note that Apple also released a fix for the said flaw for the iPadOS 15.0.2. ![]() ![]() The outlet further noted that bugs such as this do not only expose the sensitive data of vulnerable devices, it also allows attackers to stuff in some malware. The bug exploits any protection that the iPhone maker put in place, such as consent and control protections, as well as transparency or sandboxing.Īccording to TomsGuide, the flaw known as the CVE-2021-30883 vulnerability specifically corrupts the memory in the IOMobileFrameBuffer, allowing third-party apps to execute commands on the devices without any prior permission. The zero-day security flaw that Tokarev discovered could allow the apps that iOS 15 users installed through the official app marketplace of the Cupertino giant, the Apple App Store, to access users' sensitive data. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |