If you use Apple devices, do not forget to connect your operating system as soon as possible. Cupertino has inserted two zero-day flaws that were actively exploited by hackers. Both were caused by a lack of limit verification. The first (CVE-2022-22675) is related to macOS, iOS and iPadOS. It is located in the AppleAVD audio / video decoding module and allows you to run arbitrary code on the kernel. The second (CVE-2022-22674) was about MacOS and was on the Intel Graphics driver. This allowed the data in the kernel’s memory to be read.
Also watch the video:
In both cases, the problem was fixed by adding the required checks to the code. To use these fixes you need to download macOS Monterey 12.3.1, iOS 15.4.1 and iPadOS 15.4.1 updates. Apple, on the other hand, did not provide any details about the cyber attacks that were carried out with these flaws. In total, the company has already fixed – since the beginning of the year – four zero-day vulnerabilities exploited by hackers.
Professional bacon fanatic. Explorer. Avid pop culture expert. Introvert. Amateur web evangelist.