On the “vulnerability” it could be considered a zero-day because there was a real exploit against it prior to the exploit being reported by security researchers. It could also be considered not a zero-day because the software vendor is aware of the vulnerability such that no other real exploit of it, regardless of it being patched, will occur on the same day that they learn of it.
It’s kinda moot that it’s been patched. Even if they somehow failed to patch it since the exploit, it is no longer a zero-day vulnerability. But, to your point, knowing that it has been patched is practically (obviously) the same as knowing that the software vendor is aware of the vulnerability.
(Funny enough, they could be aware of it and it still be a zero-day since the definition is how many days have past since the vendor learned of it prior to it being exploited. Though, it would need to be exploited after they learn about it but before they patch it, which is unlikely.)
Phone 1 - with sim and is exploited, no data or apps.
Phone 2 - different OS, no sim, uses portable hotspot from phone 1 and has all the apps and data.
This is a smart solution, thanks - we like the ease of use that Stripe offers, but there are probably just as feasible providers we can use and save the money!
“They're the only big cloud provider I feel comfortable with”
Firstly do you work for aws, as saying the other big cloud providers are inferior is unusual. Azure for example powers a lot of critical enterprise which are Microsoft.net centered.
And secondly there are lots of other providers outside of the big cloud providers who can maintain 99.99% service levels.
It mentions a CVE number but the apple link is generic and mo details on the CVE database.
Has this even been fixed by apple?