the silicon giant, Apple continues to roll out new updates to improve user experience. Recently one Security update from Apple rolling out to iOS, iPadOS, macOS, tvOS, watchOS, and Safari. The main purpose of this update is to address several security vulnerabilities, including an actively exploited zero-day bug in the wild.
Apple’s latest security update aims to fix a zero-day bug
The latest security vulnerability is tracked as CVE-2023-38606. The point worth noting is that the flaw is in the kernel and allows a malicious app to potentially change the sensitive kernel state. The company revealed that it was being handled with enhanced state management. The silicon giant noted in its advisory:
“Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.7.1”
The noteworthy point here is that CVE-2023-38606 is the third discovered vulnerability associated with Operation Triangulation. For anyone who doesn’t know, Operation Triangulation is actually a sophisticated mobile cyber espionage campaign that has been targeting iOS devices since 2019 using a zero-click exploit chain. On the other hand, Apple patched the other two zero-days last month, CVE-2023-32434 and CVE-2023-32435.
The Apple updates are available for the following Apple devices and operating systems:
|
The good news is that Apple resolved a total of 11 zero-days in the last patch round. These bugs or vulnerabilities have been affecting Apple’s software since early 2023.
Check Out: Netflix rolls out ‘My Netflix’ tab for quick access to saved shows and downloads – PhoneWorld
