Brother
Professional
- Messages
- 2,590
- Reaction score
- 479
- Points
- 83
Apple has released updates to fix another bug in its products.
Apple has released security updates for iOS, iPadOS, macOS, tvOS, and the Safari web browser to address a zero-day vulnerability that has been actively exploited.
The Type Confusion vulnerability CVE-2024-23222 in the WebKit engine allows an attacker to trick victims into visiting malicious web content to execute arbitrary code. Apple said the issue was resolved thanks to improved checks. Apple acknowledged that it was aware of exploiting the vulnerability, but did not share any other details about the nature of the attacks or the cybercriminals exploiting the flaw.
Updates are available for the following devices and operating systems:
The patched vulnerability is the first actively exploited zero-day vulnerability patched by Apple in 2024. Last December, Apple released emergency security updates for backup fixes for two actively exploited zero-day vulnerabilities in older iPhones and some Apple Watch and Apple TV models. According to the company, the problem may have been exploited in iOS versions prior to iOS 16.7.1.
Apple has released security updates for iOS, iPadOS, macOS, tvOS, and the Safari web browser to address a zero-day vulnerability that has been actively exploited.
The Type Confusion vulnerability CVE-2024-23222 in the WebKit engine allows an attacker to trick victims into visiting malicious web content to execute arbitrary code. Apple said the issue was resolved thanks to improved checks. Apple acknowledged that it was aware of exploiting the vulnerability, but did not share any other details about the nature of the attacks or the cybercriminals exploiting the flaw.
Updates are available for the following devices and operating systems:
- iOS 17.3 and iPadOS 17.3 — iPhone XS and later, iPad Pro 12.9 inches 2nd generation and later, iPad Pro 10.5 inches, iPad Pro 11 inches 1st generation and later, iPad Air 3rd generation and later, iPad 6th generation and later, and iPad mini 5-2nd generation and later;
- iOS 16.7.5 and iPadOS 16.7.5 — iPhone 8, iPhone 8 Plus, iPhone X, iPad 5th generation, iPad Pro 9.7 inches and iPad Pro 12.9 inches 1st generation;
- macOS Sonoma 14.3 — Mac computers running macOS Sonoma;
- macOS Ventura 13.6.4 — Mac computers running macOS Ventura;
- macOS Monterey 12.7.3 — Mac computers running macOS Monterey;
- tvOS 17.3-Apple TV HD and Apple TV 4K (all models);
- Safari 17.3 — Macs running macOS Monterey and macOS Ventura.
The patched vulnerability is the first actively exploited zero-day vulnerability patched by Apple in 2024. Last December, Apple released emergency security updates for backup fixes for two actively exploited zero-day vulnerabilities in older iPhones and some Apple Watch and Apple TV models. According to the company, the problem may have been exploited in iOS versions prior to iOS 16.7.1.