Detected a vulnerability in ios 11 related to reading qr codes

It seems that problems are still being discovered in iOS 11. Since it has recently been revealed that there is a new vulnerability in the system. In this case it is a v ulnerability related to reading QR codes. Apparently, the function in question would not be as safe as one would expect or want from it.

Detected a vulnerability in iOS 11 related to reading QR codes

Due to this bug that was just detected in this function in iOS 11, the user could see how the security of the device is significantly compromised. How does this vulnerability work?

Security flaw in iOS 11

When we scan a QR code we can do it to visit a specific website and have information about a product or service. But, it seems that due to this failure, users end up on a malicious web page, instead of the one indicated in the QR code. Something that can cause users to receive malware on their phones. All this without in many cases the user being aware of it.

Basically, what happens is that the vulnerability is based on the native iOS 11 QR code reader. Since it does not work correctly and does not detect what is the host name of the URL. This is what allows hackers to manipulate the URL displayed when scanning.

The vulnerability tells the user that they will be redirected to the page they think is correct, but it does not actually happen. So it is a fairly significant danger. For this reason, users with iOS 11 are recommended to reduce the use of the QR code reader temporarily. Meanwhile, we expect some response from Apple.

The Hacker News Font