Kanfanin Apple sun sake sabbin update [gyara] akan matsalolin tsaro guda biyu da suka fuskanta wanda daya daga cikin su (vulnerability) zai iya karanta passwords din mutum ta hanyar amfani da manhajar su ta VoiceOVer Assistive TEchnology.
Wannan kafa me rauni wadda ake wa lakabi da CVE-2024-44204, ta nuna tsantsar matsalar dake da alaka da kundin sabon password application din wanda ya shafi wasu daga cikin iPhones da iPads. Masanin tsaron nan wato Bistrit Daha ya samu jinjina da yabo bayan gabatar da wannan bincike da yayi sannan kuma ya marmaza ya ankarar da kamfanin.
Password din customer / user na iya karanta kanshi da kanshi ta cikin wannan manhaja ta VoiceOver, Daga Bisani kuma kamfanin apple suka shaida hakan cewa a bisa shawarwari yin hakan shine zai taimaka wajen tabbatar da cewa mutum ne.
Wasu daga cikin wayoyin da abin ya shafa:
- iPhone XS zuwa yanzu
- iPAd PRo 13-inch
- iPad Pro 12.9-inch 3rd Generation kawo yanzu
- iPad Pro 11-inch 1st generation kawo yanzu
- iPhoneAir 3rd genration zuwa yanzu
- iPad 7th generation kawo yanzu sannan
- iPad mini 5th gneration kawo yanzu.
Haka zalika wanna din wani nakasu ne wanda ke dauke da ID (CVE-2024-44207) a yayin da shi wannan vulnerability din yaka bama (bad actors) daman daukar sauti (audio) kafin alamar cewa an saka mic ta bayyana. Hakika wannan vulnerability din an samu damar gyara shi a sa'ilin da Michael Jimenez da wani wanda ya bukaci a sakaya sunan sa sukai bayyanar a rubuce bayan kammala binciken su da sukayi.
Sabida haka kamfanin iPhone sun bukaci customers din su da suyi marmaza suyi updating din wayoyin su da Tablets din su cikin gaggawa sabida dakile barnar tun kan ta riske su.