Apple patches its ninth vulnerability for this year

Since the start of 2022, Apple has addressed nine vulnerabilities with the latest one affecting iOS and iPadOS.

This Monday, Apple rolled out updates to patch its ninth vulnerability for this year which was given the CVE-2022-42827 identifier.

What is the vulnerability about?

The vulnerability, tracked as CVE-2022-42827, is an out-of-bounds write issue that can be exploited by an attacker to execute arbitrary code with kernel privileges.

The flaw was reported to Apple by an anonymous researcher, the company addressed it with improved bounds checking in iOS 16.1 and iPadOS 16.

Impacted devices

The vulnerability impacts the following Apple devices:

• iPhone 8 and later,
• iPad Pro (all models),
• iPad Air 3rd generation and later,
• iPad 5th generation and later,
• iPad mini 5th generation and later

Apple users are recommended to immediately update their devices to mitigate exposure to attack attempts.

Apple zero-day vulnerabilities in 2022

Apple has addressed other eight other zero-day vulnerabilities since January, below is the list of fixed issues:

• January 2022: CVE-2022-22587 and CVE-2022-22594.
• February 2022: CVE-2022-22620.
• March 2022: CVE-2022-22674.
• May 2022: CVE-2022-22675
• August 2022: CVE-2022-32894
• September 2022: CVE-2022-32917.

TheCISO

Website | + posts

• TheCISO

  https://cisotimes.com/author/theciso/

  FTI Consulting Study Reveals Significant Communications Gaps Between CISOs and C-Suites Despite Increased Focus on Cybersecurity
• TheCISO

  https://cisotimes.com/author/theciso/

  SEC Blames SIM Swapping and Lack of MFA for X Account Hijacking
• TheCISO

  https://cisotimes.com/author/theciso/

  FCC Expands Data Breach Notification Requirements
• TheCISO

  https://cisotimes.com/author/theciso/

  Breaking: Major Firms Hit by Alarming Ransomware Blitz!