Muongorori wekuchengetedza akaburitsa ruzivo nezve Apple HomeKit bug, iyo kuramba basa inogona kukonzera mune yakabatana iOS zvishandiso uye inoenderera mushure mekutangazve. Muongorori akati akaudza Apple bug muna Nyamavhuvhu.
Muongorori wezvekuchengetedza Trevor Spiniolas, uyo akawana bug, anodana vulnerability Doorlock uye anoburitsa humbowo-hwe-pfungwa paGitHub. Iyo bug iri muApple's HomeKit API ye smart kumba zvishandiso. Iyo bug inoitika kana vanorwisa vakaisa HomeKit mudziyo une zita refu, angangoita mazana mashanu ezviuru mavara. IOS zvishandiso zvinozobatana kune icho chishandiso chinomira kupindura, kunyangwe mushure mekutangwazve. Kana vashandisi vadzoreredza mudziyo weIOS kumagadzirirwo efekitori, asi wozopinda muiCloud account yakabatana neHomeKit mudziyo, bug inodzoserwa.
Spiniolas inoshuma kuti chero iOS app ine mukana weApple Home data inogona kupa zita rekuti HomeKit zvishandiso. Maapplication akadaro anogona kushandisa kusazvibata. Apple yakaunza muganho pakureba kwemazita eHomeKit muIOS 15.1 uye, sekureva kwemuongorori, inogona kunge yakangotanga kusvika 15.0, saka izvi hazvichagoneke pane ichangoburwa iOS zvishandiso. Nekudaro, zvishandiso zveHomeKit zvakatopihwa zita zvinogona "kuomesa" iOS zvishandiso zvinoshandisa shanduro dzemazuva ano dzeIOS.
Mutsvagiri anosimbisa kuti zvinowanzoitika kuti kusazvibata kuchashandiswa nekugadzira network yeKumba uye kukoka vanhu kwairi kuburikidza neemail email. Spiniolas inoti vashandisi vanogona kuzvidzivirira kubva kune bug nekuregeredza kukoka kune isingazivikanwe Kumba network. Vashandisi veIOS vanoshandisa zvishandiso zveHomeKit pachavo vanogona kuzvidzivirira muchikamu nekudzima 'Show Home Controls' muKudzora Center.
Spiniolas akati yakataura nezve bug kuApple muna Nyamavhuvhu 10. Maererano nemuongorori, Apple yakaratidza kuti ichauya nekugadzirisa "mberi kwe2022", asi mwedzi wapera yakagadzirisa izvi "kutanga 2022", mushure mokunge Spiniolas akaudza Apple kuti ichaita kuti bug iite pachena kutanga kwa2022. Iyo bug haisati yagadziriswa neApple. Muongorori akambobatikidzwa nezve bug mu macOS, iyo yakavharwa muna 2019.
Spiniolas anotenda kuti Apple yakanonoka kupindura kumushumo wayo wekutanga. Muongorori anogovera maemail neThe Verge, umo mushandi weApple akabvuma bug uye akakumbira Spiniolas kuti asaburitse zvakadzama nezve Doorlock kusvika kutanga kwa2022. Apple haisati yataura pachena nezve kuburitswa.
Apple yakagara ichishoropodzwa nekuda kwayo bug bounty chirongwa. Pamakambani makuru etekinoroji, mutemo weApple wekuburitsa pachena ndiye mudiki. Kunyangwe Apple ichipa mibairo yakakwira, vabiki vetsika vave vachinyunyuta kwemakore pamusoro pekugadzirisa zvishoma nezvishoma uye zviziviso zvinoita sekunyangarika mumakomba matema. vakatonyora nyaya pamusoro pezvinetso izvozvo gore rakapera.