https://blog.qife122.com/tags/imessage%E6%BC%8F%E6%B4%9E/ Recent content in IMessage漏洞 on 办公AI智能小助手 Hugo zh-cn qife Sun, 11 Jan 2026 18:16:44 +0800 https://blog.qife122.com/p/%E6%8E%A2%E7%B4%A2%E9%9B%B6%E7%82%B9%E5%87%BB%E6%BC%8F%E6%B4%9E%E5%88%A9%E7%94%A8ios-imessage%E6%97%A0%E9%9C%80%E7%94%A8%E6%88%B7%E4%BA%A4%E4%BA%92%E7%9A%84%E8%B6%8A%E7%95%8C%E5%86%99%E5%85%A5%E6%BC%8F%E6%B4%9E%E5%88%86%E6%9E%90/ Sun, 11 Jan 2026 18:16:44 +0800 https://blog.qife122.com/p/%E6%8E%A2%E7%B4%A2%E9%9B%B6%E7%82%B9%E5%87%BB%E6%BC%8F%E6%B4%9E%E5%88%A9%E7%94%A8ios-imessage%E6%97%A0%E9%9C%80%E7%94%A8%E6%88%B7%E4%BA%A4%E4%BA%92%E7%9A%84%E8%B6%8A%E7%95%8C%E5%86%99%E5%85%A5%E6%BC%8F%E6%B4%9E%E5%88%86%E6%9E%90/ <h1 id="零点击漏洞ios-imessage中的越界写入">零点击漏洞：iOS iMessage中的越界写入</h1> <h2 id="漏洞概述">漏洞概述</h2> <p>近日，在众包安全平台HackerOne上，研究人员披露了一个影响iOS系统iMessage组件的高危安全漏洞。该漏洞被归类为“零点击”（zero-click）漏洞，这意味着攻击者无需受害者进行任何点击、接听或其他形式的交互，即可触发漏洞。</p> https://blog.qife122.com/p/%E7%8E%BB%E7%92%83%E7%AC%BC%E9%9B%B6%E7%82%B9%E5%87%BBimessage%E6%BC%8F%E6%B4%9E%E5%AF%BC%E8%87%B4ios%E6%8C%81%E4%B9%85%E6%80%A7%E5%85%A5%E4%BE%B5%E4%B8%8E%E8%AE%BE%E5%A4%87%E5%8F%98%E7%A0%96/ Wed, 19 Nov 2025 07:39:57 +0800 https://blog.qife122.com/p/%E7%8E%BB%E7%92%83%E7%AC%BC%E9%9B%B6%E7%82%B9%E5%87%BBimessage%E6%BC%8F%E6%B4%9E%E5%AF%BC%E8%87%B4ios%E6%8C%81%E4%B9%85%E6%80%A7%E5%85%A5%E4%BE%B5%E4%B8%8E%E8%AE%BE%E5%A4%87%E5%8F%98%E7%A0%96/ <h2 id="完整技术披露">完整技术披露</h2> <h3 id="漏洞概述">漏洞概述</h3> <p>&ldquo;玻璃笼&quot;攻击链是一个通过零点击iMessage漏洞实现iOS设备持久性入侵并可能导致设备变砖的高级攻击技术。该漏洞涉及CVE-2025-24085、CVE-2025-24201和CNVD-2025-07885等多个安全漏洞。</p>