I have just been informed by our IT of a new “zero-day, zero-click vulnerability in IOS” which impacts all iPads, iPhones, Apple Watch, macOS even Apple TV.
There are reports of this vulnerability being exploited in the wild. The attacker can install spyware/malware/control software onto an Apple device by sending a specially crafted PDF file. The device user doesn’t need to do anything for the attack to be successful.
This new vulnerability is fixed with IOS 14.8 which was released yesterday.
Would you be able to check/approve iOS 14.8 as soon as possible please?
The key CVE-ID is CVE-2021-30858.
