Apple has issued patches to iOS and iPadOS to address a kernel vulnerability that has been exploited in attacks. The weakness, identified as CVE-2023-42824, has been described as a local privilege escalation issue, implying that it was part of an exploit chain.
Apple has not released any details about the assaults or the entity who reported the issue. Many of the recently fixed iOS bugs that have been exploited in the field, on the other hand, have been exploited by commercial spyware providers. _x000D_Customers were originally notified about CVE-2023-42824 and its active exploitation on October 4, when Apple released iOS 17.0.3, which included a patch.