[Levin]

BY SHYNN ONG
Published June 23, 2023
Updated June 23, 2023


SINGAPORE — To address "multiple zero-day vulnerabilities" in Apple products that are being actively exploited, users are urged to immediately update their devices' software, the Cyber Security Agency of Singapore (CSA) said on Friday (June 23).

......

A “zero-day vulnerability” is a software vulnerability discovered by attackers before the vendor or developer has become aware of it, thus it has not yet been patched.

......

CSA said the vulnerabilities could leave Apple devices prone to memory corruption and allow attackers to carry out malicious code with "kernel privileges", which are greater than administrator privileges.

......

The bug affects the following products:

• iPhone 6s (all models)

• iPhone 7 (all models)

• iPhone SE (1st generation)

• iPhone 8 and later

• iPad 5th generation and later

• iPad Air 3rd generation and later

• iPad Air 2

• iPad mini 4th generation and later

• iPad Pro (all models)

• iPod Touch (7th generation)

• Macs running macOS Big Sur, Monterey, and Ventura

• Apple Watch Series 3 to 7

• Apple Watch SE


https://www.todayonline.com/singapore/cs...es-2198501