CVE-2020-27950: Exploitation of this vulnerability lets hackers to leak memory.Īlthough there is no exact explanation how these flaws are being extracted by hijackers but as per the chances that are being assumed, the trio is chained together to let attackers exploit them remotely.CVE-2020-27932: It uses privileges to access iOS kernel allwoing hijackers to execute more malicious code.CVE-2020-27930: This vulnerability works by corrupting memory which thus lets computer code to be executed in order to send malicious components.What Vulnerabilities has Apple patched in the update?Īccording to the research by Project Zero, here are these three iOS zero-days flaws: These teams, by recognizing such vulnerabilities and preventing them from being caught by attacks, work on elevating the standards of safety and security for all the Internet users. This team has a mission to restrict threat actors to extract the privilege of discovering and exploiting security vulnerabilities. Project Zero that was formed in July 2014 is basically a team of security analysts who were employed by Google to spot and research about zero-day vulnerabilities possibly present in software and hardware systems. These vulnerabilities are confirmed and unveiled by security researchers of the Project Zero team, led by Google. These are zero-day vulnerabilities that fall victim to active exploitation without a patch available out there. The word has recently come out that Apple patched three vulnerabilities in iOS as well as iPadOS and it turned out that they were actively being ripped by attacks. This spoofing can be a gateway to conquer devices for threat actors. Three new security vulnerabilities in iOS have been found getting exploited at the hands of hijackers.
It is again time for Apple users to install the latest iOS update on iPhone or iPad.