Tags
Aktuelle Nachrichten
America
Aus Aller Welt
Breaking News
Canada
DE
Deutsch
Deutschsprechenden
Europa
Europe
Global News
Internationale Nachrichten aus aller Welt
Japan
Japan News
Kanada
Konflikt
Korea
Krieg in der Ukraine
Latest news
Maps
Nachrichten
News
News Japan
Polen
Russischer Überfall auf die Ukraine seit 2022
Science
South Korea
Ukraine
Ukraine War Video Report
UkraineWarVideoReport
Ukrainian Conflict
United Kingdom
United States
United States of America
US
USA
USA Politics
Vereinigte Königreich Großbritannien und Nordirland
Vereinigtes Königreich
Welt
Welt-Nachrichten
Weltnachrichten
Wissenschaft
World
World News
5 Comments
Ha, low tech wins again.
# Who does the vulnerability affect?
Apple iOS versions prior to 18 and iPadOS versions prior to 18
Apple iOS versions prior to 17.7 and iPadOS versions prior to 17.7
Apple macOS Sonoma versions prior to 14.7
Apple macOS Ventura versions prior to 13.7
Apple macOS Sequoia versions prior to 15
So in short, update to version 18 and you should be fine.
I get keeping details of security issues under wraps until the responsible disclosure is complete, but geez, this article feels like FUD more than it does information. It says there’s a arbitrary code execution, security bypass, DoS vuln in a bunch of Apple products, but it doesn’t mention a CVE, link to a disclosure by the researchers, or really give me any way to verify that the vulnerabilty is legitimate in any way. Until additional information comes to light, I’m not worried at all.
Edit: I found some details, but IMHO, the journaists could have linked to something to confirm their reports. [CVE details for Septmber 2024 for Apple, Inc. ordered by severity.](https://www.cvedetails.com/vulnerability-list/assigner-45/Apple-Inc..html?page=1&year=2024&month=9&order=3) There are a couple denial of service vulnearabilies and a sandbox escape that are concerning. Additionally there’s a couple info-stealer kinds of vulnerabilities that are worth looking at, but overall, even though most of these high severity CVEs look scary, I don’t think there’s anything to be worried about, even after seeing the details.
For some reason the only references to this I can find so far are on a few sites that look to be based in India. I would expect that a vulnerability that affects so many potential users would have more global traction.