Oligo Security Research has discovered a new set of vulnerabilities in Apple’s AirPlay Protocol and the AirPlay Software Development Kit (SDK), which is used by third-party vendors to integrate AirPlay into third-party devices.
The vulnerabilities enable an array of attack vectors and outcomes, including:
Zero-Click RCE
One-Click RCE
Access control list (ACL) and user interaction bypass
Local Arbitrary File Read
Sensitive information disclosure
Man-in-the-middle (MITM) attacks
Denial of service (DoS)..Apple and Oligo have worked together to thoroughly identify and address the vulnerabilities with the goal of protecting end-users. Apple has released its latest versions of software to address the vulnerabilities and has allowed time for those devices to be updated…
The Oligo Security research team reported 23 vulnerabilities to Apple. All of the flaws have ultimately been fixed..
tvOS 18.4
iOS 18.4
iPadOS 18.4
iPadOS 17.7.6
macOS Sequoia 15.4
visionOS 2.4
macOS Sonoma 14.7.5
macOS Ventura 13.7.5..
|
Patch reliability is unclear, but widespread attacks make patching prudent. Go ahead and patch, but watch out for potential problems. |
-
Update your Apple Devices Wormable Zero-Click Remote Code Execution in AirPlay..
- This topic has 1 reply, 2 voices, and was last updated 20 hours, 53 minutes ago.
AuthorViewing 0 reply threadsAuthor-
already updated my iphone SE 2nd gen device to iOS 18.4.1 more than a week ago
1 user thanked author for this post.
Viewing 0 reply threads
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
Orb : how fast is my Internet connection
by 10 minutes ago
-
Solid color background slows Windows 7 login
by 1 hour, 4 minutes ago
-
Windows 11, version 24H2 might not download via Windows Server Updates Services
by 10 hours, 25 minutes ago
-
Security fixes for Firefox
by 17 minutes ago
-
Notice on termination of services of LG Mobile Phone Software Updates
by 11 hours, 48 minutes ago
-
Update your Apple Devices Wormable Zero-Click Remote Code Execution in AirPlay..
by 20 hours, 53 minutes ago
-
Amazon denies it had plans to be clear about consumer tariff costs
by 11 hours, 53 minutes ago
-
Return of the brain dead FF sidebar
by 27 minutes ago
-
windows settings managed by your organization
by 18 minutes ago
-
Securing Laptop for Trustee Administrattor
by 9 hours, 20 minutes ago
-
The local account tax
by 24 minutes ago
-
Recall is back with KB5055627(OS Build 26100.3915) Preview
by 1 day, 9 hours ago
-
Digital TV Antenna Recommendation
by 1 day, 2 hours ago
-
Server 2019 Domain Controllers broken by updates
by 1 day, 21 hours ago
-
Google won’t remove 3rd party cookies in Chrome as promised
by 1 day, 23 hours ago
-
Microsoft Manager Says macOS Is Better Than Windows 11
by 2 days, 2 hours ago
-
Outlook (NEW) Getting really Pushy
by 1 day, 5 hours ago
-
Steps to take before updating to 24H2
by 19 hours, 53 minutes ago
-
Which Web browser is the most secure for 2025?
by 1 day, 9 hours ago
-
Replacing Skype
by 22 hours, 3 minutes ago
-
FileOptimizer — Over 90 tools working together to squish your files
by 1 day, 20 hours ago
-
Excel Macro — ask for filename to be saved
by 17 hours, 59 minutes ago
-
Trying to backup Win 10 computer to iCloud
by 21 hours, 49 minutes ago
-
Windows 11 Insider Preview build 26200.5570 released to DEV
by 4 days, 2 hours ago
-
Windows 11 Insider Preview build 26120.3941 (24H2) released to BETA
by 4 days, 4 hours ago
-
Windows 11 Insider Preview Build 22635.5305 (23H2) released to BETA
by 4 days, 4 hours ago
-
No April cumulative update for Win 11 23H2?
by 2 days, 16 hours ago
-
AugLoop.All (TEST Augmentation Loop MSIT)
by 4 days, 4 hours ago
-
Boot Sequence for Dell Optiplex 7070 Tower
by 4 days, 19 hours ago
-
OTT Upgrade Windows 11 to 24H2 on Unsupported Hardware
by 2 hours ago
Remembering Woody
