Security News > 2023 > July > Apple Issues Urgent Patch for Zero-Day Flaw Targeting iOS, iPadOS, macOS, and Safari

Apple Issues Urgent Patch for Zero-Day Flaw Targeting iOS, iPadOS, macOS, and Safari
2023-07-11 04:08

Apple has released Rapid Security Response updates for iOS, iPadOS, macOS, and Safari web browser to address a zero-day flaw that it said has been actively exploited in the wild.

The WebKit bug, cataloged as CVE-2023-37450, could allow threat actors to achieve arbitrary code execution when processing specially crafted web content.

Credited with discovering and reporting the flaw is an anonymous researcher.

Apple noted in a terse advisory that it's "Aware of a report that this issue may have been actively exploited."

Apple has addressed 10 zero-day vulnerabilities in its software since the start of 2023.

It also arrives weeks after the company rolled out patches to fix three zero-days, two of which have been weaponized by unidentified actors in connection with an espionage campaign called Operation Triangulation.


News URL

https://thehackernews.com/2023/07/apple-issues-urgent-patch-for-zero-day.html

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2023-07-27 CVE-2023-37450 The issue was addressed with improved checks.
network
low complexity
apple webkitgtk
8.8

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Apple 72 238 1567 2279 265 4349