Apple patched many zero-day bugs in iOS 15.4.1 and macOS 12.3.1 updates

In the newly released iOS 15.4.1 and macOS Monterey 12.3.1 updates, Apple has fixed some serious security holes. In it, a number of dangerous zero-day vulnerabilities being exploited are also fixed.

One of the patched zero-day vulnerabilities affects both iOS and macOS devices. According to Apple, upon a successful exploit, the hacker can execute arbitrary code with kernel privileges. The second vulnerability was found in the Intel Graphics driver, so it only affects macOS and can lead to kernel memory leaks.

Both were reported by an anonymous researcher and you can read more details below:

Apple AVD Vulnerability

Affected : macOS Monterey and iOS 15.

Impact : An application can execute arbitrary code with kernel privileges.

Description : Out-of-bounds data logging problem has been solved by improving the limit checking process. Apple has received reports of this vulnerability being exploited by hackers.

More information : This vulnerability is tracked under the code CVE-2022-22675 and reported by an anonymous researcher.

Vulnerability in Intel Graphics Driver

Affected : macOS Monterey.

Impact : An application can read kernel memory.

Description : The issue of reading out of bounds data that could lead to kernel memory leaks has been resolved by improving input validation. Apple has received reports of this vulnerability being exploited by hackers.

More information : This vulnerability is tracked under code CVE-2022-22674 and reported by an anonymous researcher.

iOS 15.4.1 also fixes a fast battery drain issue while macOS 12.3.1 fixes an issue that caused a Bluetooth device to disconnect unexpectedly from a Mac.