Earlier, a security researcher discovered and reported a remote code execution vulnerability or a vulnerability that allows an attacker to wipe all iOS devices. @RobertCFO tweeted on Wednesday that it was able to use this low-power Bluetooth vulnerability that can be attacked at close range to wipe affected iPhone and iPad devices without access, and will provide a proof-of-concept demonstration in the future.
POC? RCE up to 15.0.X ~ High level proximity based Bluetooth LE exploit to remote wipe iDevices based on proximity alone! No physical device access.
In short can put a laptop in a backpack and ride a bike in a city wiping iPhones 🙂
POC date tbd#iOS #iOS15 #iosrce pic.twitter.com/CD7cj9Bna7
— Robert (@RobertCFO) October 13, 2021
In a screenshot embedded in the tweet, it can be seen that @RobertCFO had a conversation with members of the Apple product security team. Apple readily acknowledged this problem and said it will be fixed in iOS 15.1. At the same time, @RobertCFO is required to keep the email and exploit details confidential until the patch is officially launched.
Join RealMi Central on Telegram, Facebook & Twitter
It is reported that iOS 15.1 will be launched on October 25 (Monday)-just one week after Apple’s Unleashed event on October 18-Apple has released the fourth development of iOS 15.1 and iPad OS 15.1. The beta version. Finally, the upcoming iOS 15.1 will introduce some features that were missing when iOS 15 was first released, such as SharePlay and the ability to add vaccination credentials to the Wallet App.