Security researcher says PoC for kernel vulnerability targeting iOS 17.4.1 and older coming soon
Apple on Monday released iOS & iPadOS 17.5, with a substantial part of that update incorporating a handful of security patches. At the very top of Apple’s “About the security content of iOS 17.5 and iPadOS 17.5” web page is CVE-2024-27804, a peculiar kernel vulnerability in AppleAVD which had the potential impact of an app being able to execute arbitrary code with kernel privileges.
These are exactly the types of things we like to hear in the jailbreak community, and CVE-2024-27804 is getting some attention by its discoverer, Meysam Firouzi (@R00tkitSMM) on X (formerly Twitter) right now because it seems that Firouzi plans to publish a proof of concept (POC) on the kernel vulnerable very soon:
It means that a kernel vulnerability is about to get a proof of concept that could assist hackers in developing a kernel exploit that could be used for a variety of different things on iOS & iPadOS firmware 17.4.1 and older. That said, it’s a good idea for anyone hoping to hack their devices at any time in the future to refrain from updating to the newly released iOS & iPadOS 17.5 firmware.