SB2021092716 - Multiple vulnerabilities in Apple iOS and iPadOS

Description

This security bulletin contains information about 3 secuirty vulnerabilities.

1) Permissions, Privileges, and Access Controls (CVE-ID: N/A)

The vulnerability allows a malicious application to escalate privileges on the system.

The vulnerability exists due to the XPC service com.apple.gamed does not properly check enforce restrictions for installed applications. A malicious application installed on the device can gain access to sensitive information or bypass sandbox restrictions.

2) Permissions, Privileges, and Access Controls (CVE-ID: N/A)

The vulnerability allows a malicious application to escalate privileges on the system.

The vulnerability exists due to application does not properly check permissions within the NEHelperCacheManager in nehelper component. A malicious application can enumerate installed applications on the device.

3) Permissions, Privileges, and Access Controls (CVE-ID: N/A)

The vulnerability allows a malicious application to escalate privileges on the system.

The vulnerability exists due to application does not properly check permissions within the NEHelperWiFiInfoManager in nehelper component. A malicious application can obtain WiFi information without the required entitlement.

Remediation

Cybersecurity Help is not aware of any official remediation provided by the vendor.

References

• https://habr.com/ru/post/579714/
• https://github.com/illusionofchaos/ios-gamed-0day
• https://github.com/illusionofchaos/ios-nehelper-enum-apps-0day
• https://github.com/illusionofchaos/ios-nehelper-wifi-info-0day