Since the start of 2022, Apple has addressed nine vulnerabilities with the latest one affecting iOS and iPadOS.
This Monday, Apple rolled out updates to patch its ninth vulnerability for this year which was given the CVE-2022-42827 identifier.
What is the vulnerability about?
The vulnerability, tracked as CVE-2022-42827, is an out-of-bounds write issue that can be exploited by an attacker to execute arbitrary code with kernel privileges.
The flaw was reported to Apple by an anonymous researcher, the company addressed it with improved bounds checking in iOS 16.1 and iPadOS 16.
The vulnerability impacts the following Apple devices:
- iPhone 8 and later,
- iPad Pro (all models),
- iPad Air 3rd generation and later,
- iPad 5th generation and later,
- iPad mini 5th generation and later
Apple users are recommended to immediately update their devices to mitigate exposure to attack attempts.
Apple zero-day vulnerabilities in 2022
Apple has addressed other eight other zero-day vulnerabilities since January, below is the list of fixed issues:
- January 2022: CVE-2022-22587 and CVE-2022-22594.
- February 2022: CVE-2022-22620.
- March 2022: CVE-2022-22674.
- May 2022: CVE-2022-22675
- August 2022: CVE-2022-32894
- September 2022: CVE-2022-32917.