Apple Warns of Newly Exploited iOS 17 Kernel Zero-Day


Apple is still engaged in a cat-and-mouse game with zero-day vulnerabilities on its popular iOS platform. The Cupertino device manufacturer hurriedly released a fresh patch on Wednesday to address two critical flaws and cautioned that one of the problems has already been used as a zero-day in the wild.

Apple claimed in a basic advisory that the exploited CVE-2023-42824 kernel vulnerability allowed a local attacker to elevate privileges, indicating that the issue was part of an exploit chain in the assaults that were seen. Apple stated without elaborating, “Apple is aware of a report that this problem may have been actively exploited against versions of iOS prior to iOS 16.6.

Read More…