Apple has recently rolled out a new series of security patches to swiftly combat three zero-day vulnerabilities that are currently being actively exploited. These vulnerabilities affect iOS, iPadOS, macOS, watchOS, and Safari. This development brings the total count of zero-day bugs discovered in Apple’s software this year up to an alarming 16.
The list of security vulnerabilities is as follows :
By infosecbulletin
/ Tuesday , September 10 2024
Researchers at Fortinet unveiled hackers to exploit GeoServer RCE vulnerability deploying malware relating to the vulnerability tracked as “CVE-2024-36401, has...
Read More
By infosecbulletin
/ Monday , September 9 2024
Multiple vulnerabilities have been published by IBM in its webMethods Integration Server which cloud allow attackers to execute arbitrary commands...
Read More
By infosecbulletin
/ Sunday , September 8 2024
Progress Software released an emergency fix for a critical vulnerability (10/10) in its Loadmaster and LoadMaster Multi-Tenant Hypervisor products, which...
Read More
By infosecbulletin
/ Thursday , September 5 2024
CISCO released security updates for two critical security flaws impacting its smart Licensing Utility that could allow unauthenticated, remote attackers...
Read More
By infosecbulletin
/ Wednesday , September 4 2024
OpenBAS is a platform that helps organizations to plan, schedule, and conduct crisis exercises, adversary simulations, and breach simulations. OpenBAS...
Read More
By infosecbulletin
/ Wednesday , September 4 2024
Zyxel has released software updates to fix a serious security issue in certain access point (AP) and security router versions....
Read More
By infosecbulletin
/ Tuesday , September 3 2024
VMware released a security advisory for a major vulnerability in the VMware Fusion product. This vulnerability could be exploited by...
Read More
By infosecbulletin
/ Tuesday , September 3 2024
Indian Computer Emergency Response Team (CERT-IN) issued advisories about multiple vulnerabilities in various Palo Alto Networks applications. Attackers could exploit...
Read More
By infosecbulletin
/ Tuesday , September 3 2024
Malaysia is quickly becoming a leading choice for investing in data centers. It aims to generate RM3.6 billion (US$781 million)...
Read More
By infosecbulletin
/ Tuesday , September 3 2024
US authorities have issued a cybersecurity advisory about a ransomware group called RansomHub. The group is thought to have stolen data...
Read More
There is a critical vulnerability with the identifier CVE-2023-41991 that affects the Security framework. This vulnerability could potentially be exploited by a malicious application to circumvent signature validation and compromise the security of the system. It is of utmost importance to address this issue as soon as possible to safeguard against potential attacks and ensure the integrity of the system.
There is a critical vulnerability in the Kernel, identified as CVE-2023-41992, which enables local attackers to exploit it in order to gain higher privileges.
There is a critical vulnerability in WebKit, known as CVE-2023-41993. This flaw has the potential to allow execution of arbitrary code if a specially crafted web content is processed.
ALSO READ:
Sophos customer met up at Dhaka; Ensuring existing investment
The latest updates are now available for the following devices and operating systems:
iOS 16.7 and iPadOS 16.7 – The iPhone 8 and newer models, as well as all iPad Pro models, the 3rd generation and newer iPad Air, the 5th generation and newer iPad, and the 5th generation and newer iPad mini are all compatible.
iOS 17.0.1 and iPadOS 17.0.1 – iPhone XS and newer models, iPad Pro 12.9-inch 2nd generation and later, iPad Pro 10.5-inch, iPad Pro 11-inch 1st generation and newer models, iPad Air 3rd generation and newer models, iPad 6th generation and newer models, iPad mini 5th generation and newer models.
macOS Monterey 12.7 and macOS Ventura 13.6
watchOS 9.6.3 and watchOS 10.0.1 – The Apple Watch Series 4 and newer models support Safari 16.6.1 on macOS Big Sur and macOS Monterey.
Apple security releases click