29 views 24 secs 0 comments

Update now! Apple releases software to patch critical security flaws

In Consumer Alerts
November 20, 2024

No joke — update promptly because these vulnerabilities are being actively exploited. Apple is urging users to promptly apply the iOS 18.1.1, macOS Sequoia 15.1.1, and the older iOS 17.7.2 updates across all devices in the Apple ecosystem. NewsBytes summarizes the issues:

In a move to protect its users, Apple has pushed critical security updates for its macOS and iOS platforms, addressing two actively exploited vulnerabilities.The flaws, which were discovered by Google‘s Threat Analysis Group (TAG), are actively targeting Intel-based macOS systems.The news was confirmed by Apple in an advisory released on Tuesday.

Vulnerability specifics

Details of the patched vulnerabilities

The first vulnerability, tagged CVE-2024-44308, is associated with JavaScriptCore. It relates to the handling of malicious web content that could result in arbitrary code execution.The second vulnerability, tagged CVE-2024-44309, is related to WebKit and involves handling malicious web content that could trigger a cross-site scripting attack.Both issues have been flagged as actively exploited on Intel-based Mac systems.

Read more at NewsBytes.