Apple has recently rolled out a new series of security patches to swiftly combat three zero-day vulnerabilities that are currently being actively exploited. These vulnerabilities affect iOS, iPadOS, macOS, watchOS, and Safari. This development brings the total count of zero-day bugs discovered in Apple’s software this year up to an alarming 16.
The list of security vulnerabilities is as follows :
There is a critical vulnerability with the identifier CVE-2023-41991 that affects the Security framework. This vulnerability could potentially be exploited by a malicious application to circumvent signature validation and compromise the security of the system. It is of utmost importance to address this issue as soon as possible to safeguard against potential attacks and ensure the integrity of the system.
There is a critical vulnerability in the Kernel, identified as CVE-2023-41992, which enables local attackers to exploit it in order to gain higher privileges.
There is a critical vulnerability in WebKit, known as CVE-2023-41993. This flaw has the potential to allow execution of arbitrary code if a specially crafted web content is processed.
The latest updates are now available for the following devices and operating systems:
iOS 16.7 and iPadOS 16.7 – The iPhone 8 and newer models, as well as all iPad Pro models, the 3rd generation and newer iPad Air, the 5th generation and newer iPad, and the 5th generation and newer iPad mini are all compatible.
iOS 17.0.1 and iPadOS 17.0.1 – iPhone XS and newer models, iPad Pro 12.9-inch 2nd generation and later, iPad Pro 10.5-inch, iPad Pro 11-inch 1st generation and newer models, iPad Air 3rd generation and newer models, iPad 6th generation and newer models, iPad mini 5th generation and newer models.
macOS Monterey 12.7 and macOS Ventura 13.6
watchOS 9.6.3 and watchOS 10.0.1 – The Apple Watch Series 4 and newer models support Safari 16.6.1 on macOS Big Sur and macOS Monterey.
Apple security releases click