High Threat Security Alert (A22-09-01): Vulnerability in Apple iOS and iPadOS


 

Published on: 01 September 2022

  
  

Description:

Apple has released iOS 12.5.6 to fix the vulnerability in various Apple devices. The list of vulnerability information can be found at:
https://support.apple.com/en-us/HT213428

Reports indicate that the vulnerability (CVE-2022-32893) is being actively exploited in the wild. You are advised to take immediate action to patch your affected systems to mitigate the elevated risk of cyber attacks.

 

Affected Systems:

  • iPhone 5s, 6, 6 Plus
  • iPad Air, mini 2 and mini 3
  • iPod touch (6th generation)

 

Impact:

A successful exploitation could lead to arbitrary code execution on an affected device.

 

Recommendation:

Apple has released new version of iOS and iPadOS to address the issue.

The updates can be obtained through the auto-update mechanism. Users of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.

 

More Information:

  • https://support.apple.com/en-us/HT213428
  • https://www.hkcert.org/security-bulletin/apple-products-multiple-vulnerabilities_20220818
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32893


Tag: Apple , iOS , iPhone , iPad , iPod , iPadOS
Tags