This vulnerability allows an attacker to fingerprint a user's device by exploiting a privacy issue in iOS. The vulnerability is fixed in iOS 18.7.2 and iPadOS 18.7.2, but it remains a concern for users who are not running the latest version of their operating system.
This is iOS, specifically versions prior to 18.7.2 (not specified in advisory). Check with: system_profiler SPHardwareDataType or ioreg -l | grep IOPlatformDevice
Note: This vulnerability does not affect macOS, watchOS, tvOS, or iPadOS.
Upgrade to iOS 18.7.2 or later.
- For immediate mitigation:
- Restrict access to sensitive data and features (e.g., location services, camera).
- Monitor for suspicious app behavior.