iPad Air 2024
2 Facebook x.com Reddit
Update to the latest versions of iOS, iPadOS, macOS, and visionOS from Apple to patch known security vulnerabilities that may have been exploited on Intel-based Macs.
The iOS 18.1.1, iPadOS 18.1.1, macOS Sequoia 15.1.1, and visionOS 2.1.1 updates fix two major security issues in the software that runs websites and apps. Hackers could use these vulnerabilities to take control of your device or steal information through malicious web content.
Apple also confirmed that these vulnerabilities “may have been actively exploited on Intel-based Mac systems.”
Intel-based Macs are vulnerable in this case because their architecture handles certain software frameworks, such as WebKit and JavaScriptCore, differently than devices running Apple Silicon. These frameworks are important for browsing the web and running JavaScript code, but their interaction with Intel processors can create specific weaknesses in some circumstances.
Apple also released iOS 17.7.2 and iPadOS 17.7.2 to address issues on older devices that can't update to the latest operating systems.
Security updates for iOS, iPadOS, macOS, and visionOS
One of the vulnerabilities, tracked as CVE-2024-44308 in the Common Vulnerabilities and Exposures database, is related to JavaScriptCore. JavaScriptCore is a framework used to run JavaScript code in apps and websites.
This vulnerability could allow attackers to execute arbitrary code on the device if a user interacts with malicious web content. Apple addressed the issue by implementing stricter checks in its software to better detect and prevent malicious activity. These checks ensure that any data or code running on the system is thoroughly checked before processing.
The second vulnerability, CVE-2024-44309, is related to WebKit, the engine that powers Safari and other web features on Apple devices. The issue could allow attackers to conduct cross-site scripting (XSS) attacks by exploiting flaws in cookie management.
Apple fixed the issue by improving “state management,” or the way its software manages and tracks certain data like cookies while you browse the web and interact with apps. The improvements ensure that hackers can’t exploit flaws in the system to gain unauthorized access or perform malicious actions.
Both security flaws were discovered and reported by security researchers Clement Lesin and Benoit Sevens.
How to secure your iPhone, iPad, Mac, and Apple Vision Pro
To secure your device, start by opening the Settings app on your iPhone, iPad, or Apple Vision Pro, or System Preferences on your Mac. From there, go to General and select Software Update to check for the latest version available. Once the update appears, click Download and Install to begin the process.
15-inch MacBook Air
Before you begin, make sure your device is connected to a stable Wi-Fi network to avoid interruptions during the download. Also, make sure your device has enough battery power or keep it connected to a charger to prevent disconnections during the update.
The iOS 18.1.1 and iPadOS 18.1.1 updates are available for a range of Apple devices. For iPhone, the update supports models starting with the iPhone XS.
For iPad, the update is compatible with several models, including the 13-inch and 12.9-inch iPad Pro (3rd generation and later) and the 11-inch iPad Pro (1st generation and later). Other supported devices include iPad Air (3rd generation and later), iPad 7th generation and later, and iPad mini 5th generation and later.
macOS Sequoia 15.1.1 is compatible with most Intel-based Macs released after 2017 and all Macs based on Apple Silicon.
Follow AppleInsider on Google News
