"This TCC bypass allows unauthorized access to files and folders, Health data, the microphone or camera, and more without alerting users. This undermines user trust in the security of iOS devices and exposes personal data to risk."
"At its core, the vulnerability enables a malicious app running in the background to intercept actions made by the user to copy or move files within the Files app and redirect them to a location under their control."
"Specifically, when a user moves or copies files or directories using Files.app within a directory accessible by a malicious app running in the background, the attacker can manipulate symlinks to deceive the Files app."
Collection
[
|
...
]