23 Apple AirPlay Vulnerabilities ‘Could Have Far-Reaching Impacts’
techrepublic.comThe so-called “AirBorne” flaws enable zero-click attacks and device takeover on local networks.
Security researchers identified 23 vulnerabilities in Apple’s AirPlay Protocol and AirPlay Software Development Kit. The vulnerabilities, collectively dubbed “AirBorne,” could expose devices to remote code execution (RCE) attacks. Such exploits could allow bad actors to take full control of Apple and third-party devices over a local network without any user interaction.
Possible impacts of these Apple vulnerabilities
Security firm Oligo reported that the AirBorne flaws enable a variety of attack vectors, including zero-click and one-click RCEs, access control list bypass, man-in-the-middle, and denial-of-service exploits. It warned that, while only attackers on the same network can exploit a vulnerable device, a successful breach could enable malware to spread automatically to other nearby devices using AirPlay.
“This could lead to the delivery of other sophisticated attacks related to espionage, ransomware, supply-chain attacks, and more,” the researchers wrote, noting ...
Copyright of this story solely belongs to techrepublic.com . To see the full text click HERE