Apple has revealed a security flaw in many of its devices, including iPhones, which could allow hackers to take control. The US technology company released security updates on its website and noted that the impact was such that the vulnerability could be exploited.
“An application may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited,” it wrote. “An out-of-bounds write issue was addressed with improved bounds checking.” Apple users have been urged to run a software update to iOS 15.6.1 and iPadOS 15.6.1, as well as macOS Monterey 12.5.1.
It listed the following devices as being affected by the flaw:
- iPhone 6 and later
- iPad Pro (all models),
- iPad Air 2 and later,
- iPad 5th generation and later,
- iPad mini 4 and later, and
- iPod touch (7th generation)
Apple did not say how, where or by whom the vulnerabilities were discovered but cited an anonymous researcher. Rachel Tobac, chief executive of SocialProof Security, tweeted that the problem could “effectively give attackers full access to [a] device”. “For most folks: update the software by end of the day if threat model is elevated (journalist, activist, targeted by nation states, etc): update now,” she wrote. The security issue comes a few weeks before Apple is due to unveil several new devices — including the iPhone 14.
The Cupertino, California-based company will reportedly hold its launch event on September 7, with new iPads and a new Apple Watch also expected to be on show.
About Author
