Apple on Thursday launched security updates for iOS, iPadOS, macOS, and Safari to tackle a new WebKit flaw that it stated may possibly have been actively exploited in the wild, building it the firm’s third zero-day patch given that the start off of the calendar year.
Tracked as CVE-2022-22620, the issue considerations a use-right after-totally free vulnerability in the WebKit component that powers the Safari web browser and could be exploited by a piece of specifically crafted web material to get arbitrary code execution.
Protect and backup your data using AOMEI Backupper. AOMEI Backupper takes secure and encrypted backups from your Windows, hard drives or partitions. With AOMEI Backupper you will never be worried about loosing your data anymore.
Get AOMEI Backupper with 72% discount from an authorized distrinutor of AOMEI: SerialCart® (Limited Offer).
➤ Activate Your Coupon Code
“Apple is conscious of a report that this issue may have been actively exploited,” the enterprise stated in a terse assertion acknowledging in-the-wild attacks leveraging the flaw.
The iPhone maker credited an anonymous researcher for finding and reporting the flaw, adding it remediated the issue with enhanced memory management.
The updates are obtainable for iPhone 6s and later, iPad Pro (all versions), iPad Air 2 and afterwards, iPad 5th era and afterwards, iPad mini 4 and later, and iPod touch (7th technology), macOS gadgets functioning Huge Sur and macOS Catalina, and also as a standalone update for Safari.
The latest take care of delivers the tally of zero-day patches issued by Apple for 2022 to a few, such as CVE-2022-22587 and CVE-2022-22594, that could have been exploited to operate arbitrary code and observe users’ on-line exercise in the web browser.
Observed this article exciting? Stick to THN on Fb, Twitter and LinkedIn to examine much more special content material we publish.
Some elements of this report are sourced from:
thehackernews.com