Apple has released security updates to patch a critical zero-day vulnerability in the iOS kernel. The vulnerability tracked as CVE-2023-42824, could allow attackers to escalate privileges and gain full control of affected devices.
“Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 16.6,” the company said in an advisory.
Apple has now also fixed the issue in iOS 16.7.1 and iPadOS 16.7.1 with improved checks, but it has yet to reveal who discovered and reported the flaw.
