InfoSecBulletin Cybersecurity for mankind
Apple’s first zero-day of 2024 has been disclosed, with fixes pushed out for MacOS, iOS, and iPadOS. Apple describes CVE-2024-23222 as a type confusion bug in Webkit. They are aware of a report suggesting that this issue might have been exploited.
“Processing maliciously crafted web content may lead to arbitrary code execution”, Apple noted. Updates have been released for iPhones, iPads, and Macs using macOS Ventura and Monterey.
Check Point Hosts “Securing the Hyperconnected World in the AI Era” in Dhaka
Microsoft Confirms 900+ XSS Vulns Found in IT Services
Daily Security Update Dated : 15.09.2025
IBM QRadar SIEM Vuln Let Attackers Perform Unauthorized Actions
Major Australian Banks using Army of AI Bots to Scam Scammers
F5 to acquire CalypsoAI for $180M for Advanced AI Security Capabilities
AI Pentesting Tool ‘Villager’ Merges Kali Linux with DeepSeek AI for Automated Attacks
CVE-2025-21043
Samsung Patched Critical Zero-Day Flaw Exploited in Android Attacks
Albania appoints world’s first AI minister, “Diella” to Tackle Corruption
L7 DDoS Botnet Hijacked 5.76M Devices for Large Attacks
Apple fixed a critical bug in the curl URL retrieval library that was reported in 2023.
There is a vulnerability called CVE-2023-38545 with a CVSS score of 9.8. It is a heap-based buffer overflow that occurs during the SOCKS5 proxy handshake. The curl project has provided a detailed description of this vulnerability.
There are four curl bugs in Ventura and Monterey that are fixed by updating to curl version 8.4.0.
Additional security fixes were made in the Apple Neural Engine, accessibility features, core data, finder, ImageIO, the login window, Apple Mail search, and the NSOpenPanel function in AppKit.
