14
Out 2021
Vulnerability Alert - Apple
TYPE
Vulnerabilities
SYSTEMS AFFECTED
iOS 15.0.2 and iPadOS 15.0.2
ECOSYSTEM
Apple, iOS
Descrição
Apple has published a security update to fix a Remote Code Execution vulnerability (CVE-2021-30883).
There is a memory corruption issue in the IOMobileFrameBuffer—a kernel extension used to manage the screen framebuffer.
This vulnerability is being actively exploited.
Impacto
If this vulnerability is successfully exploited, it allows an attacker to execute arbitrary code with kernel privileges.
Resolução
It is recommended to upgrade to iOS version 15.0.2 and/or iPadOS 15.0.2.
Referências
[1] https://support.apple.com/pt-pt/HT212846
[2] https://support.apple.com/pt-pt/HT201222