Apple Zero-Day Actively Exploited on iPhone 15
Without many details, Apple patches a vulnerability that has been exploited in the wild to execute code.
![Image of iPhone 8 Image of iPhone 8](https://eu-images.contentstack.com/v3/assets/blt6d90778a997de1cd/bltdf917256397adb60/64f155e4b873340afdcd4fee/iPhone_STANCA_SANDA_Alamy.jpg?width=1280&auto=webp&quality=95&format=jpg&disable=upscale)
The latest Apple security update includes a fix for an actively exploited security vulnerability that could allow arbitrary code execution on iPhone 8 and above.
The bug, fixed with the iOS 16.1.2 update, is a type confusion issue in the WebKit browser engine. Type confusion occurs when a piece of code doesn't verify the type of object that is passed to it; in this case, it can be be triggered when processing specially crafted content, Apple noted in its advisory.
As for the active exploitation, the mobile giant noted that it is "aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.1."
Apple has been plagued by zero-day exploits over the past several months.
About the Author(s)
You May Also Like
CISO Perspectives: How to make AI an Accelerator, Not a Blocker
August 20, 2024Securing Your Cloud Assets
August 27, 2024