 Apple users have been alerted to update their devices with an 'emergency' security update. The iPhone maker just released one of its new Rapid Security Response updates to fix a software vulnerability that might be exploited by hackers. Tagged 'CVE-2023-37450', it's a zero-day vulnerability in WebKit, Apple's web rendering engine. It was discovered by FingerprintJS and reported to Apple on June 27. The vulnerability affects all versions of iOS, iPadOS, macOS, and tvOS from 15.4 to 16.5.1. Attackers can exploit it to execute arbitrary code on a victim's device by tricking them into visiting a malicious website. On Monday, Apple released security updates to address the vulnerability and advised users to install the updates as soon as possible. How to check if your device is affected Go to Settings > General > About. Look for the Software Version. If your device is running iOS 15.4 or later, iPadOS 15.4 or later, macOS Monterey 12.3 or later, or tvOS 15.4 or later, then your device is affected by the vulnerability. You should be fine if you have automatic updates with 'Security Responses & System Files' turned on. Rapid Security Responses are designed to be downloaded automatically onto Apple devices. Still, you might need to restart your device to complete the update. If not, you should install the latest security updates as soon as possible. You can do this by going to Settings > General > Software Update. Which Apple products are affected? iPhone iPhone 8 and later iPhone 8 and later iPad All iPad Pro models, iPad Air 3rd generation and later, iPad 5th generation and later, and iPad mini 5th generation and later All iPad Pro models, iPad Air 3rd generation and later, iPad 5th generation and later, and iPad mini 5th generation and later Mac MacBook Air (M1, 2020), MacBook Pro (13-inch, M1, 2020), MacBook Pro (14-){kind=link}
NEWS… BUT NOT AS YOU KNOW IT
Apple users have been alerted to update their devices with an ’emergency’ security update.
The iPhone maker just released one of its new Rapid Security Response updates to fix a software vulnerability that might be exploited by hackers.
Tagged ‘CVE-2023-37450’, it’s a zero-day vulnerability in WebKit, Apple’s web rendering engine. It was discovered by FingerprintJS and reported to Apple on June 27.
The vulnerability affects all versions of iOS, iPadOS, macOS, and tvOS from 15.4 to 16.5.1. Attackers can exploit it to execute arbitrary code on a victim’s device by tricking them into visiting a malicious website.