Rewterz Threat Advisory – Multiple Apple iOS and iPadOS Vulnerabilities
May 18, 2022Rewterz Threat Advisory – Multiple Apple macOS Big Sur and macOS Monterey Vulnerabilities
May 18, 2022Rewterz Threat Advisory – Multiple Apple iOS and iPadOS Vulnerabilities
May 18, 2022Rewterz Threat Advisory – Multiple Apple macOS Big Sur and macOS Monterey Vulnerabilities
May 18, 2022Severity
High
Analysis Summary
CVE-2022-26724
Apple tvOS could allow a local attacker to bypass security restrictions, caused by an authentication issue in the AuthKit component. By sending a specially-crafted request, an attacker could exploit this vulnerability to enable iCloud Photos without authentication.
Impact
- Bypass Security
Indicators Of Compromise
CVE
- CVE-2022-26724
Affected Vendors
- Apple
Affected Products
- Apple tvOS 15.4
Remediation
Refer to Apple security document for patch, upgrade or suggested workaround information. See References.