Apple Fixes Exploited Zero-Day With iOS 16.1 Patch


The Cupertino device maker confirmed the active exploitation of CVE-2022-42827, warning in a barebones advisory that the flaw exposes iPhones and iPads to arbitrary code execution attacks.

“An application may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited,” Apple said in a note documenting the security vulnerabilities.

As is customary, Apple did not release details on the active exploitation or provide indicators of compromise or other data to help iOS users look for signs of infections.