Original Issue Date: October 20, 2021
Severity Rating: HIGH
Software Affected
Apple iOS and iPad OS versions prior to 15.0.2
iPhone 6s and later
iPad Pro (all models)
iPad Air 2 and later
iPad 5th generation and later
iPad mini 4 and later
iPod touch (7th generation)
Overview
Vulnerability has been reported in Apple iOS and iPad OS which could allow a malicious application to escalate privileges on the system.
Description
The vulnerability exists in Apple iOS and iPad OS due to a boundary error within the IO Mobile Frame Buffer subsystem. An attacker may be able to exploit this vulnerability by convincing the user to run a specially crafted application.
Successful exploitation of this vulnerability could allow the attacker to trigger integer overflow and execute arbitrary code with kernel privileges on the target system.
Solution
Apply appropriate software updates as mentioned in the Apple Security updates