Apple has released a patch for a previously disclosed “unc0ver” jailbreak 0-day vulnerability. The security updates and patch address iOS 13.5.1, macOS Catalina 10.15.5 Supplemental Update, watchOS 6.2.6, tvOS 13.4.6 and other products.
According to researchers, the latest version of jailbreaking tool UnC0ver uses a zero-day exploit to take control of Apple devices running iOS 11 through recent version iOS 13.5.
Threatpost reported last week multiple developers widely applauded the tool on Twitter after hacker and lead developer hacker called Pwn20wnd
the social-media platform upon Pwn20wnd’s announcement of its release.
The latest Apple iOS 13.5.1 and iPadOS 13.5.1 update fixes one code execution vulnerability.
The unc0ver memory consumption vulnerability CVE-2020-9859 could allow an application to execute arbitrary code with kernel privileges.
In addition, the security updates for macOS Catalina 10.15.5 Supplemental Update and 2020-003 High Sierra also address the same unc0ver bug CVE-2020-9859.
Similarly, Apple patched unc0ver in each of the watchOS 6.2.6 and tvOS 13.4.6 updates as well.