Exploited Vulnerability in Apple tvOS

Mirza Silajdzic
Mirza Silajdzic
By: Mirza Silajdzic Reading time: 2 minutes
Photograph of Apple TV Devices
© Lebedev Yury/Shutterstock.com

On October 27th, 2021 Apple released information about software vulnerabilities afflicting Apple tvOS. The report that is published on the Support section of the official Apple website details a total of 18 vulnerabilities. The report includes 5 software vulnerabilities that have been classified as high risk. In the report, Apple has emphasized that one of the vulnerabilities is possibly being actively exploited by cybercriminals for malicious purposes.

Apple’s track record when it comes to breaches and vulnerabilities has been sliding downhill recently -the company has been struggling with; operating system, software, and device security vulnerabilities. Even iOS software is a little bit shaky at the moment and as a result, Apple is constantly releasing new updates. According to stack.watch, there have been 166 software vulnerabilities in 2021 affecting Apple tvOS alone, and the forecast is that the number of vulnerabilities this year is going to surpass last year’s numbers.

About Apple TV & Apple tvOS

Apple TV is Apple’s Netflix-like online digital content platform (e.g. similar to Roku) that operates via a proprietary set-top-box micro-console and with Apple tvOS software, that is derived from iOS. The tvOS software also powers Apple’s HomePod. Apple tvOS software has reached its 15th iteration (version) as of fall 2021, and the platform is used by over 30 million users worldwide. The platform takes up about 6% of the global digital streaming market share -which is still dominated by Netflix and Amazon Prime Video in 2021.

The Apple tvOS Vulnerability

The key finding credited to an anonymous researcher in the Apple release report is vulnerability CVE-2021-30883. It is an integer overflow type security flaw in the IOMobileFrameBuffer (Apple TV 4k and Apple TV HD) which leads to memory corruption. The report states, “Apple is aware of a report that this issue may have been actively exploited.”

Technical Details

The vulnerability allows a malicious application to escalate privileges on the system, meaning that a remote attacker could completely compromise an unpatched system. The vulnerability exists due to a boundary error within the IOMobileFrameBuffer subsystem. A malicious application can trigger an integer overflow and execute arbitrary code with kernel privileges.

Vulnerable Software Versions

The following software versions of Apple tvOS are at risk;

tvOS: 14.0 18J386, 14.0.1 18J400, 14.0.2 18J411, 14.1, 14.2 18K57, 14.3 18K561, 14.4 18K802, 14.5 18L204, 14.6 18L569, 14.7 18M60, 15.0 19J346

Important User Info

Apple has released a patch that resolves the above security risks. Apple TV users should immediately verify that their tvOS software is updated to the latest version by keeping automatic updates enabled at all times.

Tech researcher & communications specialist
Mirza has an education background in Global Communications, has worked in advertising, marketing, journalism and television over the years while living in several different countries. He is now working to consolidate news and outreach at VPNoverview.com, while in his free time he likes to work on documentary projects, read about sociology and write about world events.
More recent news about Cybercrime and Cybersecurity
Leave a comment
Leave a comment