Just a few days after the official launch of new major versions for operating systems iOS (iPhone), iPadOS (iPad), watchOS (Apple Watch), Apple's company has launched an urgent security update (Security Update) to correct some critical vulnerabilities.
Two vulnerabilities were discovered in the browser engine WebKit (CVE-2023-41993) and in the Security Framework (CVE-2023-41991) by which the cyber attackers are allowed to bypass the validation of the signature using malware applications or to obtain arbitrary code execution through web pages specially designed for this vulnerability. Web pages that have "Malware" in the back.
A third vulnerability was discovered in Kernel Framework, which provides APIs and support for nucleus extensions and drivers resident in the nucleus. Attackers can exploit this error (CVE-2023-41992) to obtain privileges what administration.
Security Update for all Apple devices (iOS, macos, iPados, watchos)
Apple has fixed the three zero-day bugs with security update ( macOS 12.7/13.6, iOS 16.7/17.0.1, iPadOS 16.7/17.0.1,i watchOS 9.6.3/10.0.1 by approaching one Certificate validation issues and through improvements in checks.
The security update is available for all holders of iPhone, iPad, Apple Watch, MAC that have installed the latest operating systems. iOS / iPadOS 17, watchOS 10, macOS Sonoma (Beta, momentan).
Pentru actualizare sistem de operare, mergeți pe device la: “Settings” > “General” > “Software Update”.
