Trellix, a vulnerability research company, has uncovered a security vulnerability affecting Apple’s iPhone and iMac Operating Systems. The vulnerability allows the attacker to sweep up users’ messages, photos, and call history. The bug could allow criminal hackers to break through Apple’s security protections and run their own unauthorized code.
The Apple vulnerabilities (CVE-2023-23531 and CVE-2023-23530) range in severity from medium to high and are classified as privilege escalation bugs. UVA Information Security advises LSPs and users to update their Apple devices to reflect the macOS 13.2 and iOS 16.3 software updates.
If you have any questions, please contact it-security@virginia.edu.
By Kelly Haley
March 2023
Printer-friendly version