Apple Releases Security Updates for Multiple Products
The released security updates include two exploited zero-day vulnerabilities in iOS, iPadOS, macOS and watchOS
Summary
The released security updates include two exploited zero-day vulnerabilities in iOS, iPadOS, macOS and watchOS
Affected platforms
The following platforms are known to be affected:
Threat details
Introduction
Apple have released three security updates to address vulnerabilities in multiple products. The released updates include two exploited zero-day vulnerabilities, assigned CVE-2023-41064 and CVE-2023-41061, affecting iOS, iPadOS, macOS, and watchOS. A remote attacker could exploit some of these vulnerabilities to take control of a vulnerable system.
Exploitation of CVE-2023-41064 and CVE-2023-41061
Apple has reported that the vulnerabilities known as CVE-2023-41064 and CVE-2023-41061 may have been actively exploited.
Threat updates
| Date | Update |
|---|---|
| 13 Sep 2023 |
CVE-2023-41064 affecting further devices
This cyber alert has been updated to reflect this change. |
Remediation advice
Affected organisations are encouraged to review the following Apple security advisories and apply any relevant updates.
Remediation steps
| Type | Step |
|---|---|
| Patch |
iOS 16.6.1 and iPadOS 16.6.1 | HT213905 https://support.apple.com/en-us/HT213905 |
| Patch |
iOS 15.7.9 and iPadOS 15.7.9 | HT213913 https://support.apple.com/en-us/HT213913 |
| Patch |
macOS Ventura 13.5.2 | HT213906 https://support.apple.com/en-us/HT213906 |
| Patch |
watchOS 9.6.2 | HT213907 https://support.apple.com/en-us/HT213907 |
| Patch |
macOS Monterey 12.6.9 | HT213914 https://support.apple.com/en-us/HT213914 |
| Patch |
macOS Big Sur 11.7.10 | HT213915 https://support.apple.com/en-us/HT213915 |
Definitive source of threat updates
CVE Vulnerabilities
Last edited: 13 September 2023 3:45 pm