Apple has fixed a zero-day vulnerability CVE-2021-30807 in Apple watchOS 7.6.1 that is under active attack.
It turns out that this is the same vulnerability Apple patched in macOS Big Sur and iOS versions on July 26.
The Apple watchOS 7.6.1 security update addresses an IOMobileFrameBuffer vulnerability CVE-2021-30807 and affects Apple Watch Series 3 and later models.
As a result, a malicious application could execute arbitrary code with kernel privileges.
“Apple is aware of a report that this issue may have been actively exploited,” Apple warned in the advisory.
- Apple fixes zero-day vulnerability (CVE-2021-30807) in macOS Big Sur and iOS
- Apple security updates for iOS 14.7, macOS Big Sur 11.5 and other products
- Apple fixes Boot Camp vulnerability (CVE-2021-30675)
- Apple fixes vulnerabilities under active exploit (CVE-2021-30663 and CVE-2021-30665)
- XCSSET malware now targets Apple’s macOS 11 and M1-based Macs
- Apple iOS 14.4.2 security update fixes zero-day vulnerability exploited in the wild