![]() ![]() ![]() In addition, iOS 15, iPadOS 15, and watchOS 8 also patched a security exploit that could allow a third-party app to bypass Privacy preferences. ![]() CVE-2021-30898: Steven Troughton-Smith of High Caffeine Content Entry added January 19, 2022Īpple does not offer any indication that this particular exploit was actively used in the wild. Impact: A malicious application may be able to access some of the user's Apple ID information, or recent in-app search terms Description: An access issue was addressed with additional sandbox restrictions on third-party applications. Released in September, iOS and iPadOS 15 introduced "additional sandbox restrictions on third-party applications" as a patch, and Apple credits developer Steve Troughton-Smith for assisting it in finding and patching the vulnerability. Apple maintains a list of security fixes and occasionally updates them with new entries once an investigation of a specific security vulnerability is completed. With most iOS, macOS, tvOS, and watchOS updates, Apple provides a list of security vulnerabilities patched in that update. Apple patched two significant security vulnerabilities when it released iOS 15 that could have potentially exposed users' private Apple ID information and in-app search history to malicious third-party apps and allowed apps to override user Privacy preferences, Apple has revealed in a recent support document update. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |