Apple has released an extremely critical update to eliminate the vulnerability identified as CVE-2022-32917, which hackers are actively using in attacks on iPhone and Mac devices.
iOS 16 update is out! How to install iOS 16?
The vulnerability allows malicious applications to execute arbitrary code with kernel privileges. Here is the list of devices affected by the zero-day vulnerability, labeled CVE-2022-32917:
- iPhone 6s and later models
- iPad Pro (all models)
- iPad Air 2 and later models
- iPad 5 and above
- iPad mini 4 and above
- iPod touch 7th generation
- Macs running macOS Big Sur 11.7 and macOS Monterey 12.6
Openly exploited
Apple has confirmed that the vulnerability reported to the company by an anonymous researcher may have been actively used in real attacks. Patches are available on iOS 15.7, iPadOS 15.7, iOS 16, macOS Big Sur 11.7, and macOS Monterey 12.6.
The company did not disclose technical details of the attacks that exploited the zero-day vulnerability to allow time for all customers to safely install the update.
1607
