News

Day-0 vulnerabilities published for iOS 15

A illusionofchaos founder has published several 0-day vulnerabilities for iOS 15 after corresponding reports to Apple went largely unheeded and in a small number of cases led to the discovered issues being silently fixed.

Spring security vulnerabilities reported

Illusionofchaos claims to have reported the security vulnerabilities to Apple back in the spring. In total, there are four bugs involved, one of which was fixed with the update to iOS 14.7 without being noted in the security release notes. A compensation via the bug bounty program is also said not to have been made. Furthermore, it is stated that Apple initially apologized after a new report and assured that it would add the gap. However, this has not happened yet. Another message to Apple remained unanswered.

For this reason, and because three of the four reported problems also exist in iOS 15, illusionofchaos decided to make the vulnerabilities public. As part of this, the unknown person published several codes on Github, with which the discovered gaps should be able to be exploited.

Problems with Game Center

To all appearances, the focus of the problems is the Game Center installed on iOS devices. Regardless of whether this application is actually used, it allows installed apps to read the email address as well as the full name of the user of the respective Apple ID. Furthermore, it is probably possible to access the Core-Duet database, which can be used to read communication data. Thus, installed apps will be able to display a list of contacts that were communicated with via iMessage, Mail or third-party services, as well as the associated timestamps. In iOS 14.8, it should also be possible to read the entire contact list without the user’s consent. This gap has been fixed with iOS 15, according to illusionofchaos.

The other vulnerabilities discovered by illusionofchaos result in location-sharing apps being able to read WLAN names and check whether certain apps are installed on the device. The vulnerability, which was fixed with iOS 14.7, had led to apps being able to read the device’s analytics data, which includes a lot of sensitive data – such as that from the Health app.

Criticism of bug bounty program

The criticism voiced by illusionofchaos is in line with that of the bug bounty program, which has already been known for some time: in the past, too, it had been reported several times that Apple reacted only hesitantly or not at all to reported security vulnerabilities and cut the bonuses offered.

Simon Lüthje

I am co-founder of this blog and am very interested in everything that has to do with technology, but I also like to play games. I was born in Hamburg, but now I live in Bad Segeberg.

Related Articles

Neue Antworten laden...

Avatar of Basic Tutorials
Basic Tutorials

Neues Mitglied

2,114 Beiträge 950 Likes

A illusionofchaos founder has published several 0-day vulnerabilities for iOS 15 after corresponding reports to Apple went largely unheeded and in a small number of cases led to the discovered issues being silently fixed. Spring security vulnerabilities reported Illusionofchaos claims to have reported the security vulnerabilities to Apple back in the spring. In total, there … (Weiterlesen...)

Antworten Like

Back to top button