According to the post, “I’ve reported four 0-day vulnerabilities this year between March 10 and May 4, as of now three of them are still present in the latest iOS version (15.0) and one was fixed in 14.7, but Apple decided to cover it up and not list it on the security content page.”
They add, “When I confronted them, they apologized, assured me it happened due to a processing issue and promised to list it on the security content page of the next update. There were three releases since then and they broke their promise each time.”
The researcher then gave Apple the courtesy by giving them an opportunity to respond and provide an explanation, if not they would make the information public, which obviously they haven’t which is why those vulnerabilities have since been disclosed.
These vulnerabilities are a bit technical but they are explained on the researcher’s blog, so if you’re curious to learn more you can check it out. Apple has yet to respond to the post, but given that these exploits have been made public and are potentially exploitable by hackers who now know about them, hopefully they’ll be patching them ASAP.
Filed in. Read more about iOS, Ios 15 and Security. Source: macrumors