FORCEDENTRY

FORCEDENTRY, also capitalized as ForcedEntry, is a security exploit allegedly developed by NSO Group to deploy their Pegasus spyware. It enables the "zero-click" exploit that is prevalent in iOS 13 and below, but also compromises recent safeguards set by Apple's "BlastDoor" in iOS 14 and later. In September 2021, Apple released new versions of its operating systems for multiple device families containing a fix for the vulnerability.

For Forcible entry, see forced entry.
FORCEDENTRY
CVE identifier(s)
  • CVE-2021-30860
  • CVE-2021-30858
Date patchedSeptember 2021
DiscovererBill Marczak from Citizen Lab
Affected software
  • Apple CoreGraphics (Quartz)
  • iOS (prior to v14.8)
  • macOS (prior to macOS Big Sur 11.6, Security Update 2021-005 Catalina)
  • watchOS (prior to v7.6.2)
This article is issued from Wikipedia. The text is licensed under Creative Commons - Attribution - Sharealike. Additional terms may apply for the media files.