Apple Security Update

Published On: March 27, 2024Categories: Cyber Alerts

In today’s SensCy Cyber Alert, your SensCy team urges Apple product users to install the new updates immediately. The new update remediates arbitrary code execution vulnerability.

The vulnerability can be tracked as CVE-2024-1580, and is described as an integer overflow in dav1d AV1 decoder that can occur when decoding videos with large frame size. This can lead to memory corruption within the AV1 decoder.

While the vulnerability is a medium-severity, it can be exploited from the network with low privileges and no user interaction. High impact on integrity, low impact on confidentiality.

This issue is fixed in the following devices:
– iOS and iPadOS 17.4.1
– iOS and iPadOS 16.7.7
– visionOS 1.1.1
– macOS Sonoma 14.4.1, macOS Ventura 13.6.6
– Safari 17.4.1 (for macOS Monterey and macOS Ventura).

How to check for new updates:

SensCy highly recommends turning on the Automatic Updates on all Apple devices and products.

On your iPhone/iPad, go to the Settings App, scroll down to General, Click Software Update, Turn on Automatic Updates. If you need additional information, use these Apple links: iPhone/ iPad: macOS

Related Posts

  • April 19, 2024

    Categories: Cyber Alerts

    In today’s SensCy Cyber Alert, your SensCy team is reviewing latest disclosure of vulnerabilities by WordPress. There were 202 vulnerabilities discovered, including 185 WordPress plugin [...]

  • April 18, 2024

    Categories: Cyber Alerts

    In today’s SensCy Cyber Alert, your SensCy team recommends Google Chrome Browser users to install the new Chrome Version 124 immediately. The new update patches [...]

  • April 10, 2024

    Categories: Cyber Alerts

    In today’s SensCy Cyber Brief, your SensCy team reviewed Adobe latest release of security updates. We recommend installing those updates immediately if you are using [...]