Skip to main content

Apple Products Multiple Vulnerabilities

Release Date: 23 Jan 2024 4354 Views

RISK: Extremely High Risk

TYPE: Operating Systems - Mobile & Apps

TYPE: Mobile & Apps

Multiple vulnerabilities were identified in Apple Products. A remote attacker could exploit some of these vulnerabilities to trigger elevation of privilege, remote code execution, sensitive information disclosure and security restriction bypass on the targeted system.

 

Note:

For CVE-2024-23222, processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been exploited.


Impact

  • Remote Code Execution
  • Security Restriction Bypass
  • Information Disclosure
  • Elevation of Privilege

System / Technologies affected

  • Versions prior to iOS 16.7.5 and iPadOS 16.7.5
  • Versions prior to iOS 17.3 and iPadOS 17.3
  • Versions prior to macOS Monterey 12.7.3
  • Versions prior to macOS Ventura 13.6.4
  • Versions prior to macOS Sonoma 14.3
  • Versions prior to Safari 17.3
  • Versions prior to tvOS 17.3
  • Versions prior to watchOS 10.3

Solutions

Before installation of the software, please visit the vendor web-site for more details.

Apply fixes issued by the vendor:

 

  • iOS 16.7.5 and iPadOS 16.7.5
  • iOS 17.3 and iPadOS 17.3
  • macOS Monterey 12.7.3
  • macOS Ventura 13.6.4
  • macOS Sonoma 14.3
  • Safari 17.3
  • tvOS 17.3
  • watchOS 10.3

Vulnerability Identifier


Source


Related Link