In today’s SensCy Cyber Alert, your SensCy team urges Apple product users to install the new updates immediately. The new update remediates a new zero-day vulnerability for iPhones, Macs, and Apple TV, that has been exploited in the wild by threat actors.
The vulnerability can be tracked as CVE-2024-23222, and is described as a WebKit confusion issue that could allow hackers to exploit to gain code execution on targeted devices.
This issue is fixed in tvOS 17.3, iOS 17.3, iPadOS 17.3, macOS Sonoma 14.3, iOS 16.7.5
and iPadOS 16.7.5, Safari 17.3, macOS Ventura 13.6.4, macOS Monterey 12.7.3. The impacted devices can be found below:
- iPhone 8, iPhone 8 Plus, iPhone X, iPad 5th generation, iPad Pro 7-inch, and iPad Pro 12.9-inch 1st generation
- iPhone XS and later, iPad Pro 9-inch 2nd generation and later, iPad Pro 10.5-inch, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 6th generation and later, and iPad mini 5th generation and later
- Apple TV HD and Apple TV 4K all models
- Macs running macOS Monterey and later
What is a zero-day vulnerability?
In cybersecurity, a zero-day vulnerability refers to a vulnerability in a system or device that has been disclosed but not yet patched. The vulnerability was discovered before developers and security researchers were aware of it and could provide a patch/update.
How to check for new updates:
SensCy highly recommends turning on the Automatic Updates on all Apple devices and products.
On your iPhone/iPad, go to the Settings App, scroll down to General, Click Software Update, Turn on Automatic Updates. If you need additional information, use these Apple links: iPhone/ iPad: macOS