iOS 14.2 has been released and fixes three 0day

Apple released security updates for iOS today (iOS 14.2) to fix three vulnerabilities (0day) detected in attacks on its users.

Screenshot 2020 09 28 Apple fixes iPhone Wi Fi and default apps issues in iOS 14 0 11 - iOS 14.2 released and fixes three 0day

According to Shane Huntley, Director of Google Threat Analysis Team, the three iOS 0days are related to recent Chrome vulnerabilities and one 0day of Windows which Google had announced in the last two weeks.

Google did not provide details on who the attackers were or what their targets were.

According to Google Project Zero team leader Ben Hawkes, whose team discovered and reported the attacks on Apple, iOS 3 0days are:

  • CVE-2020-27930 - a remote code execution issue in the iOS FontParser component that allows intruders to run code remotely on iOS devices.
  • CVE-2020-27932 - a privilege scaling vulnerability in the iOS kernel allows attackers to run malicious code with kernel-level privileges.
  • CVE-2020-27950 - iOS kernel memory leak that allows intruders to retrieve content from the kernel memory of an iOS device.

All three bugs are believed to have been used together, allowing intruders to breach iPhones remotely.

Read them Technology News from all over the world, with the validity of iGuRu.gr

Follow us on Google News

Leave a reply

Your email address is not published. Τα υποχρεωτικά πεδία σημειώνονται με *

 

previous Post

NoSQLMap: NoSQL automated attack program

Next Post

Canonical wins big deal with MTS

Related Posts