关于苹果iOS和iPadOS任意代码执行漏洞风险通报
产品描述:
iOS、iPadOS系统是美国苹果(CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple)公司所研发的移动操作系统。为CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple公司多款产品提供相关功能。
影响产品或组件及版本:
CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iOS < 16.1
CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPadOS < 16
受影响资产情况:
苹果iOS用户
受影响资产列表:
CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPhone >= 8
CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPad Pro
CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPad Air >= 3
CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPad >= 5
CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPad mini >= 5
利用过程及结果:
我司监测到iOS系统内核漏洞(CVE-2022-42827),由于CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iOS和iPadOS系统内核边界检查不当,会导致越界写入问题,该问题可允许恶意程序以内核权限执行任意代码。
修补措施:
目前苹果官方已发布安全版本修复该漏洞,建议受影响用户尽快更新至对应的安全版本。
检测规则:
CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iOS < 16.1、CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPadOS < 16均存在此漏洞。
漏洞来源:https://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/en-us/HT213489
参考链接:
https://www.cisa.gov/known-exploited-vulnerabilities-catalog
https://www.helpnetsecurity.com/2022/10/25/cve-2022-42827/
https://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/en-us/HT213489
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-202210-1651
评论