Apple Patches 24 Vulnerabilities Across Product Lines
The vulnerabilities include three for which exploits have already been seen in the wild.
![](https://eu-images.contentstack.com/v3/assets/blt6d90778a997de1cd/bltc94608acf452fd67/655cf371ab171e040a838b2a/329050_DR23_Graphics_Website_V5_Default_Image_v1.png?width=1280&auto=webp&quality=95&format=jpg&disable=upscale)
Apple has released updates addressing 24 separate vulnerabilities in iOS 14.2 and iPadOS 14.2. The releases were part of a group of seven updates released on Nov. 5 covering products across all Apple hardware families.
Within the batch of vulnerabilities patched in these releases are three zero-day vulnerabilities — those for which an exploit was found in the wild before a patch was available. All three of these zero-days — CVE-2020-27930, CVE-2020-27950, and CVE-2020-27932 — exist in iOS 14.2, iPadOS 14.2, macOS Catalina, and watchOS 5.3.9. Two of the vulnerabilities would allow an attacker to execute arbitrary code on the vulnerable system; the third would allow a malicious application to disclose the contents of kernel memory.
Apple recommends that all users update their systems as soon as possible.
About the Author(s)
You May Also Like
CISO Perspectives: How to make AI an Accelerator, Not a Blocker
August 20, 2024Securing Your Cloud Assets
August 27, 2024