The latest Apple update addressed the eighth zero-day vulnerability in only nine months of 2022.
The latest batch of Apple security updates included a patch for the newest addition to the company’s long list of zero-day flaws, which researchers discovered in 2022.
The zero-day vulnerability tracked as CVE-2022-32917 affected iPhones, Macs, and iPads. According to Apple’s security update, an exploit of the bug could allow an attacker to execute arbitrary code with kernel privileges.
“Apple is aware of a report that this issue may have been actively exploited,” read the company’s advisor.
The flaw impacts iPhone 6s and later, all models of iPad Pro, iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, iPod touch (7th generation), and Macs with Big Sur 11.7 or Monterey 12.6 systems.
The company claims that an anonymous researcher reported the vulnerability.
The latest zero-day flaw is the eighth Apple has to deal with this year. The company addressed two flaws in January (CVE-2022-22587, CVE-2022-22594) and March (CVE-2022-22674, CVE-2022-22675) and one in February (CVE-2022-22620), May (CVE-2022-22675) and August (CVE-2022-32894).
Recently, researchers discovered Apple’s zero-day vulnerability being traded on the dark web. A few days after the initial vulnerability was exposed, the researchers found a post in which a hacker offered a new zero-day around the same CVE-2022-32893 for €2.5 million.
More from Cybernews:
Subscribe to our newsletter