Apple patches actively exploited critical flaws in latest iOS releases
Take action: If you are using Apple iOS devices, patch as soon as possible. It's a fairly easy process, apply the update while you are charging your iPhone, iPad.
Learn More
Apple has released security updates to patch a couple of actively exploited vulnerabilities in their latest sowftare updates iOS 17.4, iPadOS 17.4, iOS 16.7.6, and iPadOS 16.7.6.
- CVE-2024-23296 (CVSS score 9.8), affects the RTKit real-time operating system (RTOS) and similarly allows attackers with the same level of access to bypass kernel memory protections.
- CVE-2024-23225 (CVSS score 8.4), is a memory corruption issue within the Kernel, allowing attackers with arbitrary kernel read and write access to circumvent kernel memory protections.
Apple has confirmed that both vulnerabilities are actively exploited in attacks, although the specifics of their use in attacks have not been disclosed.
The updates care applicable to a wide range of devices.
- iOS 16.7.6 and iPadOS 16.7.6, the updates are available for iPhone 8, iPhone 8 Plus, iPhone X, iPad 5th generation, iPad Pro 9.7-inch, and iPad Pro 12.9-inch 1st generation.
- iOS 17.4 and iPadOS 17.4 updates are available for iPhone XS and later models, iPad Pro 12.9-inch 2nd generation and later, iPad Pro 10.5-inch, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 6th generation and later, and iPad mini 5th generation and later.
Users are advised to update their Apple devices as soon as possible.
