- USDT(TRC-20)
- $0.0
If you have an iPhone, an iPad, a Mac, or even a Vision Pro, it's time to update it. Apple just dropped new security updates for all four devices: iOS 18.1.1 and iPadOS 18.1.1, macOS 15.1.1, and visionOS 2.1.1. Even older devices that can't run Apple's latest iOS 18 and iPadOS 18 software are getting iOS 17.7.2 and iPadOS 17.2.2.
Why the urgency, with so many different security updates dropping at once? Well, the updates all patch two particular security flaws. That might sound like a short list, especially compared to the more than 75 patches included in iOS 18.1 and macOS 15.1. The difference here, however, is these new updates patch security flaws with known exploits. In other words, someone, somewhere, is taking advantage of these security flaws right now
The first flaw, tracked as CVE-2024-44308, is an issue with JavaScriptCore: By processing malicious web content, you potentially allow a bad actor to execute arbitrary code on your device. Essentially, they will be able to run their own code on your iPhone, iPad, Mac, or Vision Pro. Not good.
The second flaw, tracked as CVE-2024-44309, is a WebKit issue, which also is impacted by malicious web content. Rather than leading to arbitrary code execution, however, this malicious web content could result in a cross-site scripting attack, which allows bad actors to run their code within your browser, rather than the device as a whole.
As of the release of these security updates, Apple says the exploits have affected only Intel-based Macs. That means the company is not publicly aware of any exploits affecting its M-series Macs, nor any iPhones, iPads, or Vision Pros. However, since these security updates are available for so many different Apple devices, it suggests that these flaws could be exploited on more than just Intel-based Macs. So if you have an iPhone or iPad that can run iOS 17.7.2 or newer, a Mac that can run macOS Sequoia, or a Vision Pro, you need to update ASAP.
No matter the Apple device, installing a new update works about the same way. First, open Settings (or System Settings on macOS) then head to General > Software Update. Here, allow the system to look for a new update. When it appears, follow the on-screen instructions to download and install it.
Full story here:
Why the urgency, with so many different security updates dropping at once? Well, the updates all patch two particular security flaws. That might sound like a short list, especially compared to the more than 75 patches included in iOS 18.1 and macOS 15.1. The difference here, however, is these new updates patch security flaws with known exploits. In other words, someone, somewhere, is taking advantage of these security flaws right now
The first flaw, tracked as CVE-2024-44308, is an issue with JavaScriptCore: By processing malicious web content, you potentially allow a bad actor to execute arbitrary code on your device. Essentially, they will be able to run their own code on your iPhone, iPad, Mac, or Vision Pro. Not good.
The second flaw, tracked as CVE-2024-44309, is a WebKit issue, which also is impacted by malicious web content. Rather than leading to arbitrary code execution, however, this malicious web content could result in a cross-site scripting attack, which allows bad actors to run their code within your browser, rather than the device as a whole.
As of the release of these security updates, Apple says the exploits have affected only Intel-based Macs. That means the company is not publicly aware of any exploits affecting its M-series Macs, nor any iPhones, iPads, or Vision Pros. However, since these security updates are available for so many different Apple devices, it suggests that these flaws could be exploited on more than just Intel-based Macs. So if you have an iPhone or iPad that can run iOS 17.7.2 or newer, a Mac that can run macOS Sequoia, or a Vision Pro, you need to update ASAP.
How to update your Apple devices
No matter the Apple device, installing a new update works about the same way. First, open Settings (or System Settings on macOS) then head to General > Software Update. Here, allow the system to look for a new update. When it appears, follow the on-screen instructions to download and install it.
Full story here:
![[DK]](/data/avatars/s/57/57999.jpg?1720990206){kind=avatar}
