Advisory Type: IT Security
Severity: High
Summary: PDS is providing the following communication to build awareness of an remote code execution vulnerability in Apple iOS operating systems.
On July 26, 2021, Apple released iOS 14.7.1, iPadOS 14.7.1, and macOS Big Sur 11.5.1 to fix a remote code execution vulnerability actively exploited in the wild. Security Advisory HT212623. And HT212622 provide details on the models of devices which are vulnerable:
- All iPad Pro models, and iPad 5th generation and newer
- iPhone 6s and newer
- iPad Air 2 and later
- iPad mini 4 and later
- macOS Big Sur
The advisories reference an Apple Watch unlock issue from a paired iPhone, however the update fixes the above referenced security vulnerability and therefore should be installed by all iOS, iPad OS, and macOS users.
Organizations, especially schools and universities, should consider upgrading as part of their preparation for the upcoming school year.
We strongly advise customers to review the Apple advisories and assess the impact to their environments. PDS Architects are available to assist with the assessment and mitigations, your Account Director can assist in arranging support for this issue.
