Apple Issues Urgent Patch for Zero-Day Flaw Targeting iOS, iPadOS, macOS, and Safari

Cyber Security

Jul 11, 2023THNZero-Day / Endpoint Security

Apple has released Rapid Security Response updates for iOS, iPadOS, macOS, and Safari web browser to address a zero-day flaw that it said has been actively exploited in the wild.

The WebKit bug, cataloged as CVE-2023-37450, could allow threat actors to achieve arbitrary code execution when processing specially crafted web content. The iPhone maker said it addressed the issue with improved checks.

Credited with discovering and reporting the flaw is an anonymous researcher. As with most cases like this, there are scant details about the nature and the scale of the attacks and the identity of the threat actor behind them.

But Apple noted in a terse advisory that it’s “aware of a report that this issue may have been actively exploited.”

UPCOMING WEBINAR

🔐 PAM Security – Expert Solutions to Secure Your Sensitive Accounts

This expert-led webinar will equip you with the knowledge and strategies you need to transform your privileged access security strategy.

Reserve Your Spot

The updates, iOS 16.5.1 (a), iPadOS 16.5.1 (a), macOS Ventura 13.4.1 (a), and Safari 16.5.2, are available for devices running the following operating system versions:

Apple has addressed 10 zero-day vulnerabilities in its software since the start of 2023. It also arrives weeks after the company rolled out patches to fix three zero-days, two of which have been weaponized by unidentified actors in connection with an espionage campaign called Operation Triangulation.

Found this article interesting? Follow us on Twitter and LinkedIn to read more exclusive content we post.

Articles You May Like

Chinese Hackers Exploit T-Mobile and Other U.S. Telecoms in Broader Espionage Campaign
Samsung Galaxy S25+, Galaxy S25 Ultra Reportedly Listed on BIS, Could Launch in India Soon
PlayStation Portal Gets Cloud Streaming Support for Select PS5 Games With New Update
Samsung Galaxy A56 5G Spotted on 3C Certification Website With Support for 45W Charging
Microsoft Launches Windows Resiliency Initiative to Boost Security and System Integrity