Apple Vision Pro Vulnerability Exposed Virtual Keyboard Inputs to Attackers

Details have emerged about a now-patched security flaw impacting Apple's Vision Pro mixed reality headset that, if successfully exploited, could allow malicious attackers to infer data entered on the device's virtual keyboard. The attack, dubbed GAZEploit, has been assigned the CVE identifier...

PT-2024-6869 · Visionos · Visionos

Name of the Vulnerable Software and Affected Versions: visionOS versions prior to 1.3 Description: The issue is related to the virtual keyboard in visionOS, where inputs may be inferred from Persona when the virtual keyboard is active. This could allow an attacker to determine what users are typi...