Urgent security update released for older iOS and iPadOS models by Apple. Stay safe!

Apple extended security updates for older iPhone and iPad models on Monday to tackle an actively exploited vulnerability. The bug, CVE-2023-23529, is a type of confusion flaw in the WebKit browser engine that could result in arbitrary code execution. 

Although resolved initially in the February 13, 2023, update, Apple has taken this step after being notified by an anonymous researcher.

“Processing maliciously crafted web content may lead to arbitrary code execution,” Apple said in a new announcement, adding it is “aware of a report that this issue may have been actively exploited.”

CVE-2023-23529: A critical flaw

A critical flaw has been detected in WebKitGTK, which could allow cybercriminals to take over a victim’s system by exploiting a vulnerability triggered by specially crafted web content. This confusion attack can be initiated by luring users to visit a malicious web page, putting them at risk of remote code execution.

Security update for vulnerable devices to combat exploitation

Amid potential abuse concerns, Apple has issued a security update for several older iPhone and iPad models, including the following models:

• iPhone 6s (all models)
• iPhone 7 (all models)
• iPhone SE (1st generation)
• iPad Air 2
• iPad mini (4th generation)
• iPod touch (7th generation)

Although technical details on the ongoing exploitation remain under wraps, the update is available as iOS 15.7.4 and iPadOS 15.7.4 to protect susceptible devices.

📣 EMERGENCY UPDATE 📣

Apple pushed additional updates for a zero-day that may have been actively exploited.

🐛 CVE-2023-23529 (WebKit) additional patches:
– iOS and iPadOS 15.7.4

— ApplSec (@ApplSec) March 27, 2023

Updates for old and new! 

Apple has recently released updates for several operating systems, including iOS 16.4, iPadOS 16.4, macOS Ventura 13.3, macOS Monterey 12.6.4, macOS Big Sur 11.7.5, tvOS 16.4, and watchOS 9.4. 

Along with addressing multiple bugs, this update was also issued in light of a security flaw (CVE-2023-23529) being actively exploited in older iPhone and iPad models. Stay protected and up-to-date with the latest Apple updates.

Conclusion 

Apple’s urgent security update for older iOS and iPadOS models highlights the importance of maintaining up-to-date devices to protect against potential vulnerabilities. With the release of iOS 15.7.4 and iPadOS 15.7.4, users can ensure their older devices are protected from CVE-2023-23529. Users must apply this patch immediately to safeguard their devices against potential threats.