Two Critical Vulnerabilities Patched by Apple

KEEPNET LABS > Blog > Two Critical Vulnerabilities Patched by Apple

Two Critical Vulnerabilities Patched by Apple

Apple releases security updates for iOS, iPadOS and Mac platforms. Updates address two zero-day vulnerabilities that attackers have previously used to compromise devices. Latest update brings the total number of zero days patched by Apple to six since the beginning of the year. No information about these attacks has been made public.

Aug 19, 2022 6:38 am

Two Critical Vulnerabilities Patched by Apple

Apple Wednesday released security updates for the iOS, iPadOS, and macOS platforms on Wednesday to address two zero-day vulnerabilities that attackers have previously used to compromise devices. The topics were: CVE-2022-32893 – webkit beyond, a problem that could lead to arbitrary code execution when processing a specially prepared CVE web content-2022-32894 – malicious software that can be used by the operating system to execute arbitrary code in the core of the Apple with the highest privileges allowed beyond a problem with the verification solved both problems by specifying boundary advanced application security vulnerabilities “already actively used might have been”, he added. No information about these attacks has been made public. The latest update brings the total number of zero days patched by Apple to six since the beginning of the year: CVE-2022-22587 (IOMobileFrameBuffer) CVE-2022-22620 (WebKit) CVE-2022-22674 (grafisch Drijver Intel) CVE-2022-22675 (AppleAVD)

Vulnerabilities

Keepnet Labs’ Threat Sharing Module: How to identify attackers in reconnaissance stage

Fewer and fewer businesses can protect themselves and the sensitive data under their control as a result of the rapid pace of digitalization, increased attack surfaces, and variety of vulnerabilities and attack methodologies. To stop the attacks, several successful and effective recent cyberattacks brought up the question of sharing threat intelligence once more. The government […]

Vulnerabilities

The last hunt of social engineering: Uber

“Hi @here I announce I am a hacker and Uber has suffered a data breach” was the message that appeared in a channel on Uber’s Slack. After the message, the ride-share giant confirmed that it was responding to “a cybersecurity incident” in cooperation with law enforcement. An 18-year-old hacker reportedly took responsibility for the attack […]

Vulnerabilities

Black Hat Fireside Chat: Deploying ‘AI’ as a weapon to win the ‘attack surface management’ war

An advanced weapon is emerging that uses data analysis to hone systems and suppress attacks. Darktrace's artificial intelligence solutions can help companies restrict access to APIs, neutralize shady IT, protect supply chains and even improve the efficiency of DEVSECOPYRIGHTs.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.