Apple releases MacOS 14.3, iOS 17.3 fixing flaws actively exploited by hackers
Take action: Time to update your Apple products once again. It's a bit of a hassle to wait for the download and a restart, but the alternative is to avoid malicious websites. Which doesn't really work, because malicious code can be injected in any site if they are compromised. So plan to patch this week.
Learn More
Apple has released new versions of OS for iPhones, iPads, Macs, and Apple TVs that provides a security updates to mitigate an actively exploited vulnerability.
The vulnerability tracked as CVE-2024-23222 (CVSS score 8.8) is categorized as a WebKit confusion issue, which could allow attackers to execute arbitrary malicious code on targeted devices. It is exploited by tricking victims into accessing maliciously crafted web content. Apple has acknowledged the exploitation of this vulnerability in the wild, though the company hasn't provided detailed information about the attacks.
The range of devices affected by CVE-2024-23222 is extensive, including both older and newer models:
- For iPhones, the impacted models start from iPhone 8, iPhone 8 Plus, iPhone X, and extend to iPhone XS and later versions.
- Affected iPad models include the 5th generation iPad, various generations of iPad Pro, iPad Air (3rd generation and later), iPad (6th generation and later), and iPad mini (5th generation and later).
- The vulnerability also impacts Macs running macOS Monterey and later versions.
- All models of Apple TV HD and Apple TV 4K are included.
The fix is available in iOS version 16.7.5 and later, iPadOS version 16.7.5 and later, macOS Monterey version 12.7.3 and higher, as well as tvOS version 17.3 and onwards.
