Apple Releases Emergency Security Updates for iPhone Users
The security updates are available for the latest versions of iOS, iPadOS, Safari, and macOS.
- Apple has released emergency security updates as fixes for zero-day vulnerabilities that impacted iPhones, iPads, and Mac devices.
- The CVE-2023-42916 and CVE-2023-42917 bugs allow attackers to access sensitive data and run arbitrary code on the affected devices.
Apple has released security updates for iPhone, iPad, and Mac users to handle two zero-day security flaws that are being actively exploited, according to the company. The bugs, CVE-2023-42916 and CVE-2023-42917, are found in the WebKit web browser engine, allowing malicious actors to extract sensitive information or run arbitrary code on devices with older OS versions.
A member of Google’s Threat Analysis Group discovered the vulnerabilities. Apple has not provided details about how the vulnerabilities were being exploited. However, it is important to note that all third-party browsers compatible with iOS and iPadOS, such as Microsoft Edge, Google Chrome, and Mozilla Firefox, use the WebKit engine, making them susceptible to attack.
See More: iOS 17 Feature Results in Warning From Law Enforcement Agencies
The security updates are available to Apple device users through iOS 17.1.2, iPadOS 17.1.2, macOS Sonoma 14.1.2, and Safari 17.1.2 versions. These updates follow on the heels of another zero-day vulnerability discovered in October 2023.
Previous zero-days associated with iOS have included spyware attacks on high-risk individuals, including politicians, activists, and journalists, among others. With these new updates, Apple has fixed 19 zero-day vulnerabilities since the start of 2023.
What do you think about Apple’s data security policies? Let us know your thoughts on LinkedIn, X, or Facebook. We’d love to hear from you!
Image source: Shutterstock