Table of Contents
September 14, 2022
|5m
How to Protect Your Apple Devices From 14 0-Day Vulnerabilities in iOS, iPadOS, and macOS
On SEP 12th, tech giant Apple rolled out security updates for their iOS, iPadOS, and macOS platforms to protect your Apple devices from 14 0-day vulnerabilities in iOS, iPadOS, and macOS. Apple didn’t disclose the technical details about the flaws to avoid the exploitation of the vulnerabilities. Let’s explore what Apple has shared about the vulnerabilities in this post. Let’s start this post from listing the vulnerabilities.
List of 0-Day Vulnerabilities in iOS, iPadOS, and macOS
Apple has shared a long list of 0-day vulnerabilities in iOS, iPadOS, and macOS.
| Sl. No. | CVE ID | Affected OS | Description | Impact |
| 1 | CVE-2022-32854 | All versions prior viOS 15.7 and viPadOS 15.7.All versions prior macOS Big Sur v11.7. | This is an improper checks in Privacy preferences. | Possible to bypass Privacy preferences. |
| 2 | CVE-2022-32911 | All versions prior viOS 15.7 and viPadOS 15.7.All versions prior macOS Big Sur v11.7.All versions prior macOS Monterey v16.6. | This is an improper memory handling issue in Kernel. | Possible to execute arbitrary code with kernel privileges. |
| 3 | CVE-2022-32864 | All versions prior viOS 15.7 and viPadOS 15.7.All versions prior macOS Big Sur v11.7.All versions prior macOS Monterey v16.6. | This is an improper memory handling issue in Kernel. | Possible to disclose kernel memory. |
| 4 | CVE-2022-32917 | All versions prior viOS 15.7 and viPadOS 15.7.All versions prior macOS Big Sur v11.7.All versions prior macOS Monterey v16.6. | This is an improper bound checks in Kernel.The flaw is actively being exploited in the wild. | Possible to execute arbitrary code with kernel privileges. |
| 5 | CVE-2022-32883 | All versions prior viOS 15.7 and viPadOS 15.7.All versions prior macOS Big Sur v11.7.All versions prior macOS Monterey v16.6. | This is a logic restrictions issue in Maps. | Possible to read read sensitive location information. |
| 6 | CVE-2022-32908 | All versions prior viOS 15.7 and viPadOS 15.7.All versions prior macOS Big Sur v11.7.All versions prior macOS Monterey v16.6. | This is a memory corruption issue in MediaLibrary. | Possible to elevate privileges. |
| 7 | CVE-2022-32795 | All versions prior viOS 15.7 and viPadOS 15.7. | This is a logic issue in Safari Extensions. | A website may be able to track users through Safari web extensions. |
| 8 | CVE-2022-32872 | All versions prior viOS 15.7 and viPadOS 15.7. | This is a logic issue in Shortcuts. | Possible to access photos from the lock screen. |
| 9 | CVE-2022-32886 | All versions prior viOS 15.7 and viPadOS 15.7. | A buffer overflow issue in WebKit. | Processing maliciously crafted web content may lead to arbitrary code execution. |
| 10 | CVE-2022-32912 | All versions prior viOS 15.7 and viPadOS 15.7. | An out-of-bounds read flaw in WebKit. | Processing maliciously crafted web content may lead to arbitrary code execution |
| 11 | CVE-2022-32902 | All versions prior macOS Big Sur v11.7.All versions prior macOS Monterey v16.6. | A logic issue in ATS. | Possible to bypass Privacy preferences. |
| 12 | CVE-2022-32896 | All versions prior macOS Big Sur v11.7.All versions prior macOS Monterey v16.6. | A runtime issue in iMovie. | A user may be able to view sensitive user information. |
| 13 | CVE-2022-32894 | All versions prior macOS Big Sur v11.7. | An out-of-bounds write issue in Kernel. The flaw is actively being exploited in the wild. | Possible to execute arbitrary code with kernel privileges. |
| 14 | CVE-2022-32900 | All versions prior macOS Big Sur v11.7.All versions prior macOS Monterey v16.6. | A logic issue in PackageKit. | An app may be able to gain elevated privileges. |
Apple Devices Vulnerable to These vulnerabilities
All iOS, iPadOS, and macOS platforms are vulnerable to these flaws. It is recommended to apply the patch to protect your Apple devices from 14 0-day vulnerabilities in iOS, iPadOS, and macOS.
How to Protect Your Apple Devices From 14 0-day vulnerabilities?
Apple released security updates in that it says it has released iOS v15.7, iPadOS 15.7, and macOS Big Sur 11.7 and Monterey 12.6 to fix these flaws. We recommend all the users of iPhones, iPad, and MacBooks upgrade their OS to the latest release. Please visit the Apple security updates page to read information about all the recently released security updates.
How to Update iOS and iPadOS to 15.7?
Follow the procedure shone in this picture to update iOS and iPadOS:
Go to Settings > General > Software Update > Click on Download and Install Updates.
Source: Apple
How to Update macOS to 11.7 & 12.6?
Follow the procedure shone in this picture to update macOS:
Go to Apple menu in the corner of your screen then Click Software Update in the System Preferences window.
Source: Apple
We hope this post would help you know how to protect your Apple devices from 14 0-day vulnerabilities in iOS, iPadOS, and macOS. Please share this post if you find this interested. Visit our social media page on Facebook, LinkedIn, Twitter, Telegram, Tumblr, Medium & Instagram, and subscribe to receive updates like this.
New Apple’s 0-Day Vulnerability – Update Your Apple Products Immediately
Patch Your Apple Devices To Fix Two New Out-of-Bound Vulnerabilities in iOS, iPadOS, and macOS
How To Secure Your APC Smart-UPS Devices From TLStorm Vulnerabilities
Identify And Fix Your Adobe Products Affected With Multiple Vulnerabilities
Arun KL
Arun KL is a cybersecurity professional with 15+ years of experience in IT infrastructure, cloud security, vulnerability management, Penetration Testing, security operations, and incident response. He is adept at designing and implementing robust security solutions to safeguard systems and data. Arun holds multiple industry certifications including CCNA, CCNA Security, RHCE, CEH, and AWS Security.
- April 18, 2024
Learn Something New with Free Email subscription
Learn Something New with Free Email subscription
Subscribe
Subscribe
Subscribe
Subscribe
- April 18, 2024
