Apple fixes two new iOS zero-days exploited in attacks on iPhones


Apple has released emergency security updates to address two zero-day vulnerabilities in the iOS Kernel and RTKit, both allowing attackers to bypass kernel memory protections with arbitrary read and write capabilities. The flaws were exploited in attacks on iPhones, prompting Apple to issue fixes in iOS 17.4, iPadOS 17.4, iOS 16.76, and iPad 16.7.6. The impacted devices include various iPhone models, iPad Pro versions, and others. Apple has not disclosed the source of the disclosures or whether the vulnerabilities were discovered internally. Users are advised to install the security updates promptly.

Read More…