Apple Fixes Bug That Let VoiceOver Shout Your Passwords


Apple just fixed a duo of security bugs in iOS 18.0.1 and iPadOS 18.0.1, one of which might cause users’ saved passwords to be read aloud. It’s hardly an ideal situation for the visually impaired. From a report: For those who rely on the accessibility features baked into their iGadgets, namely Apple’s VoiceOver screen reader, now is a good time to apply the latest update. In typical Apple fashion, the company hasn’t released much in the way of details about the first security issue, tracked as CVE-2024-44204, which makes it tougher to understand the conditions under which this vulnerability could be triggered, or how to avoid it until the update is applied. What we do know is that it was characterized as a logic issue, which Apple rectified by improving validation. The disclosure of the bug comes less than a month after iOS 18 and iPadOS 18 debuted. Ironically, this release included Apple’s first native password manager, the Passwords app.



Source link