Apple Patches Two Security Vulnerabilities Impacting Mail App in iOS 13.4.5 Beta

by

San Francisco-based cybersecurity company ZecOps today announced that it has uncovered two zero-day security vulnerabilities affecting Apple's stock Mail app on iOS devices, as noted by Motherboard and The Wall Street Journal.

mail ios app icon
ZecOps claims that one of the vulnerabilities enables an attacker to remotely infect an iOS device by sending emails that consume a significant amount of memory, while another could allow remote code execution capabilities. Successful exploitation of the vulnerabilities is said to allow an attacker to leak, modify, and delete a user's emails.

Targets of the vulnerabilities have apparently included corporate executives and government officials rather than average end users.

The vulnerabilities are said to impact all software versions between iOS 6 and iOS 13.4.1. ZecOps said that Apple has patched the vulnerabilities in the latest beta of iOS 13.4.5, which should be publicly released within the coming weeks. In the meantime, ZecOps recommends using a third-party email app like Gmail or Outlook, which are apparently not impacted.

Related Forum: iOS 13

Top Rated Comments

Nimrad Avatar
Nimrad
53 months ago
There are also some critical usability issues that need to fixed asap.
Score: 27 Votes (Like | Disagree)
fbr$ Avatar
fbr$
53 months ago

ZecOps recommends using a third-party email app like Gmail
I stopped reading there...
Score: 16 Votes (Like | Disagree)
Mick-Mac Avatar
Mick-Mac
53 months ago
The ONE thing I like about Apple's Mail (on both the Mac and iOS) is that Apple demonstrably respect your privacy. Everybody else pretty much doesn't (except for paid services like proton mail). So I use Apple's Mail, however it is just a piece of junk compared to everything else out there. It's good that security bugs are found and fixed, but in the name of all things holy can somebody at Apple please dip their little finger into that hoard of cash they own and just FIX mail. Make it something they can take pride in and not be a magnet for endless frustration for their customers.
Score: 12 Votes (Like | Disagree)
I7guy Avatar
I7guy
53 months ago

I guess everyone with devices that can't run iOS 13 need to just buy new hardware.
My guess is Apple will roll this into ios 12, when ios 13.4.5 is released.
Score: 12 Votes (Like | Disagree)
H3LL5P4WN Avatar
H3LL5P4WN
53 months ago
How considerate of them to tell Apple first and allow it to be patched before publicly disclosing it.

/s
Score: 11 Votes (Like | Disagree)
Itada Avatar
Itada
53 months ago

How considerate of them to tell Apple first and allow it to be patched before publicly disclosing it.

/s
Except that the cat was already out of the bag: they were already being exploited, for years. ZecOps found them by investigating the aftermath of successful attacks.
Score: 10 Votes (Like | Disagree)
Read All Comments

Popular Stories

iOS 18 Apple Music Messages and Notes Feature 1

iOS 18 Rumored to Add New Features to These 16 Apps on Your iPhone

Tuesday April 30, 2024 10:44 am PDT by
Apple is expected to announce iOS 18 during its WWDC keynote on June 10, and new features have already been rumored for many apps, including Apple Music, Apple Maps, Calculator, Messages, Notes, Safari, and others. Below, we recap iOS 18 rumors on a per-app basis, based on reports from MacRumors, Bloomberg's Mark Gurman, and others: Apple Maps: At least two new Apple Maps features are...
Read Full Article75 comments
Apple Event Let Loose Pastel Green

Report: Five Things Apple Won't Announce at Its Event Next Week

Friday May 3, 2024 4:30 am PDT by
Apple is holding at least five announcements for later in the year that will not arrive at the company's "Let loose" special event next week, according to Bloomberg's Mark Gurman. In a report detailing his expectations for Apple's upcoming event, Gurman noted that there are a total of five things that the company is holding for later in the year: AI features: While Apple may tease new...
Read Full Article68 comments
top stories 4may2024

Top Stories: Apple Event Preview, iPad Pro With M4 Chip Rumor, New Beats Headphones, and More

Saturday May 4, 2024 6:00 am PDT by
It's been a long time since the last one, but an Apple event is finally right around the corner! While it's anticipated to be a fairly short pre-recorded affair, we're expecting to see the first updates to the iPad lineup in over a year and half, so make sure to tune in to see what Apple has in store. Other news and rumors this week included a couple of product introductions from Apple's...
Read Full Article9 comments