Apple Privilege Escalation Bug Let Attacker Execute Arbitrary Code

22 February 2023

Trellix researchers discovered a new class of privilege escalation bugs based on the ForcedEntry attack, which exploited a feature of macOS and iOS to deploy the NSO Group’s mobile Pegasus malware. The new class of bugs allows arbitrary code to be executed in the context of several platform applications, resulting in privilege escalation and sandbox escape on both macOS and iOS. The vulnerabilities range in severity from medium to high, with CVSS scores ranging from 5.1 to 7.1.

Read full article on GBHackers

Date:

22 February 2023

Categorie(s):

NEWS

Tag(s):

Apple, Bug, Cyber Security News, Let, Privilege Escalation

Dating apps kiss’n’tell all sorts of sensitive personal info4 May 2024
Multilogin Antidetect Browser Review 20244 May 2024
Navigating the API Security Landscape: A CEO’s Perspective on Embedding Zero Trust Principles4 May 2024
Lightsail VPN Review: Is Lightsail VPN Safe? [+Best Alternatives]4 May 2024
How To Secure Your Business In The Times Of All-pervasive Hackers4 May 2024