Apple's New Security Update Addresses Actively Exploited Zero-day Vulnerability

Apple has released security updates to address the first zero-day vulnerability of the year, impacting iPhones, Macs, and Apple TVs. Tracked as CVE-2024-23222 [iOS, macOS, tvOS, Safari], the WebKit confusion issue allows attackers to execute arbitrary code on vulnerable devices through malicious web pages. Apple is aware of in-the-wild exploitation but has not credited a specific researcher or provided detailed information on the attacks. The fix is implemented in iOS 16.7.5 and later, iPadOS 16.7.5 and later, macOS Monterey 12.7.3 and higher, and tvOS 17.3 and later. Read more...