{"id":1575398,"date":"2025-03-12T03:24:47","date_gmt":"2025-03-12T05:24:47","guid":{"rendered":"https:\/\/teknomers.com\/fr\/apple-libere-le-correctif-pour-la-vulnerabilite-webkit-zero-jour-exploitee-dans-des-attaques-ciblees\/"},"modified":"2025-03-12T03:24:52","modified_gmt":"2025-03-12T05:24:52","slug":"apple-libere-le-correctif-pour-la-vulnerabilite-webkit-zero-jour-exploitee-dans-des-attaques-ciblees","status":"publish","type":"post","link":"https:\/\/teknomers.com\/fr\/apple-libere-le-correctif-pour-la-vulnerabilite-webkit-zero-jour-exploitee-dans-des-attaques-ciblees\/","title":{"rendered":"Apple lib\u00e8re le correctif pour la vuln\u00e9rabilit\u00e9 Webkit z\u00e9ro-jour exploit\u00e9e dans des attaques cibl\u00e9es"},"content":{"rendered":"<p> <br \/>\n<\/p>\n<div>\n<p><span class=\"p-author\"><i class=\"icon-font icon-calendar\">\ue802<\/i><span class=\"author\">12 mars 2025<\/span><i class=\"icon-font icon-user\">\ue804<\/i><span class=\"author\">Ravie Lakshmanan<\/span><\/span><span class=\"p-tags\">S\u00e9curit\u00e9 \/ vuln\u00e9rabilit\u00e9 des points finaux<\/span><\/p>\n<\/div>\n<div id=\"articlebody\">\n<div class=\"separator\" style=\"clear: both;\"><a rel=\"nofollow\" href=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2025\/03\/Apple-libere-le-correctif-pour-la-vulnerabilite-Webkit-zero-jour-exploitee.png\" style=\"display: block;  text-align: center; clear: left; float: left;\"><\/a><\/div>\n<p>Apple mardi <a rel=\"noopener nofollow\" href=\"https:\/\/support.apple.com\/en-us\/100100\" target=\"_blank\">lib\u00e9r\u00e9<\/a> Une mise \u00e0 jour de s\u00e9curit\u00e9 pour aborder une faille z\u00e9ro-jour qui, selon elle, a \u00e9t\u00e9 exploit\u00e9e dans des attaques &#8220;extr\u00eamement sophistiqu\u00e9es&#8221;.<\/p>\n<p>La vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 attribu\u00e9e \u00e0 l&#8217;identifiant CVE CVE-2025-24201 et est enracin\u00e9e dans le composant du moteur Web de navigateur Webkit.<\/p>\n<p>Il a \u00e9t\u00e9 d\u00e9crit comme un probl\u00e8me d&#8217;\u00e9criture hors limites qui pourrait permettre \u00e0 un attaquant de fabriquer du contenu Web malveillant de sorte qu&#8217;il peut sortir du contenu Web Sandbox.<\/p>\n<p>Apple a d\u00e9clar\u00e9 qu&#8217;il avait r\u00e9solu le probl\u00e8me avec des ch\u00e8ques am\u00e9lior\u00e9s pour emp\u00eacher les actions non autoris\u00e9es. Il a \u00e9galement not\u00e9 qu&#8217;il s&#8217;agit d&#8217;une solution suppl\u00e9mentaire pour une attaque qui a \u00e9t\u00e9 bloqu\u00e9e dans iOS 17.2.<\/p>\n<div class=\"dog_two clear\"><center class=\"cf\"><a rel=\"nofollow noopener sponsored\" href=\"https:\/\/thehackernews.uk\/cis-securesuite\" target=\"_blank\" title=\"Cybersecurity\"><img loading=\"lazy\" decoding=\"async\" class=\"lazyload\" alt=\"Cybers\u00e9curit\u00e9\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2025\/03\/1740818990_705_Mozilla-met-a-jour-les-termes-de-Firefox-apres-le.png\" width=\"727\" height=\"90\"\/><\/a><\/center><\/div>\n<p>En outre, il a reconnu que la vuln\u00e9rabilit\u00e9 &#8220;pourrait avoir \u00e9t\u00e9 exploit\u00e9e dans une attaque extr\u00eamement sophistiqu\u00e9e contre des individus cibl\u00e9s sp\u00e9cifiques sur les versions d&#8217;iOS avant iOS 17.2&#8221;.<\/p>\n<p>Cependant, l&#8217;avis ne mentionne pas si l&#8217;\u00e9quipe de s\u00e9curit\u00e9 d&#8217;Apple a d\u00e9couvert le d\u00e9faut ou si elle lui a \u00e9t\u00e9 signal\u00e9e par un chercheur externe. Il ne mentionne pas non plus quand les attaques ont commenc\u00e9, combien de temps ils ont dur\u00e9 et qui a \u00e9t\u00e9 cibl\u00e9.<\/p>\n<p>La mise \u00e0 jour est disponible pour les appareils et versions du syst\u00e8me d&#8217;exploitation suivantes &#8211;<\/p>\n<ul>\n<li><strong><a rel=\"noopener nofollow\" href=\"https:\/\/support.apple.com\/en-us\/122281\" target=\"_blank\">iOS 18.3.2 et iPados 18.3.2<\/a><\/strong>  &#8211; iPhone XS et ult\u00e9rieurement, iPad Pro 13 pouces, iPad Pro 12,9 pouces 3e g\u00e9n\u00e9ration et plus tard, iPad Pro 11 pouces 1\u00e8re g\u00e9n\u00e9ration et plus tard, iPad Air 3e g\u00e9n\u00e9ration et plus tard, iPad 7e g\u00e9n\u00e9ration et plus tard, et iPad Mini 5e g\u00e9n\u00e9ration et plus tard<\/li>\n<li><strong><a rel=\"noopener nofollow\" href=\"https:\/\/support.apple.com\/en-us\/122283\" target=\"_blank\">macOS Sequoia 15.3.2<\/a><\/strong>  &#8211; Mac ex\u00e9cutant macOS Sequoia<\/li>\n<li><strong><a rel=\"noopener nofollow\" href=\"https:\/\/support.apple.com\/en-us\/122285\" target=\"_blank\">Safari 18.3.1<\/a><\/strong>  &#8211; Mac ex\u00e9cutant macOS Ventura et macOS Sonoma<\/li>\n<li><strong><a rel=\"noopener nofollow\" href=\"https:\/\/support.apple.com\/en-us\/122284\" target=\"_blank\">VisionOS 2.3.2<\/a><\/strong>  &#8211; Apple Vision Pro<\/li>\n<\/ul>\n<p>Avec le dernier d\u00e9veloppement, Apple a abord\u00e9 un total de trois z\u00e9ro-jours exploit\u00e9s activement dans son logiciel depuis le d\u00e9but de l&#8217;ann\u00e9e, les deux autres \u00e9tant CVE-2025-24085 et CVE-2025-24200.<\/p>\n<p><\/p>\n<div class=\"cf note-b\">Vous avez trouv\u00e9 cet article int\u00e9ressant? Suivez-nous <a rel=\"noopener nofollow\" href=\"https:\/\/twitter.com\/thehackersnews\" target=\"_blank\">Gazouillement <i class=\"icon-font icon-twitter\">\uf099<\/i><\/a>  et <a rel=\"noopener nofollow\" href=\"https:\/\/www.linkedin.com\/company\/thehackernews\/\" target=\"_blank\">Liendin<\/a> Pour lire plus de contenu exclusif que nous publions.<\/div>\n<\/div>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><br \/>\n<br \/><br \/>\n<br \/><a href=\"https:\/\/thehackernews.com\/2025\/03\/apple-releases-patch-for-webkit-zero.html\" rel=\"nofollow noopener\" target=\"_blank\">ttn-fr-57<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\ue80212 mars 2025\ue804Ravie LakshmananS\u00e9curit\u00e9 \/ vuln\u00e9rabilit\u00e9 des points finaux Apple mardi lib\u00e9r\u00e9 Une mise \u00e0 jour de s\u00e9curit\u00e9 pour aborder une faille z\u00e9ro-jour qui, selon elle, a \u00e9t\u00e9 exploit\u00e9e dans des attaques &#8220;extr\u00eamement sophistiqu\u00e9es&#8221;. La vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 attribu\u00e9e \u00e0 l&#8217;identifiant CVE CVE-2025-24201 et est enracin\u00e9e dans le composant du moteur Web de navigateur Webkit. [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":1575399,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[274266,274265,2479,8074,46619,4168,32471,79002,274264,4161,274263,6124,429,133,36372,7487,274267,4160,185,238617,246491,4172,79016,4166,3667,4164,163264,286108],"class_list":["post-1575398","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technologie","tag-actualites-de-piratage","tag-actualites-des-pirates","tag-apple","tag-attaques","tag-ciblees","tag-comment-pirater","tag-correctif","tag-cyber-security-news","tag-cyber-security-news-aujourdhui","tag-cyber-mises-a-jour","tag-cyber-nouvelles","tag-cyberattaques","tag-dans","tag-des","tag-exploitee","tag-libere","tag-malware-ransomware","tag-mises-a-jour-de-la-cybersecurite","tag-pour","tag-securite-de-linformation","tag-securite-du-reseau","tag-securite-informatique","tag-the-hacker-news","tag-violation-de-donnees","tag-vulnerabilite","tag-vulnerabilite-logicielle","tag-webkit","tag-zerojour"],"_links":{"self":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/1575398","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/comments?post=1575398"}],"version-history":[{"count":0,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/1575398\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media\/1575399"}],"wp:attachment":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media?parent=1575398"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/categories?post=1575398"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/tags?post=1575398"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}