Apple has launched iOS 18.1.1 and macOS Sequoia 15.1.1, providing crucial security updates. The latest information on their security website highlights vulnerabilities that may have been actively exploited in real-world scenarios.
The updates for iOS 18.1.1, iPadOS 18.1.1, and macOS Sequoia 15.1.1 address two vulnerabilities found in WebKit and JavaScriptCore. Apple acknowledges a report indicating that this issue may have been exploited on Intel-based Mac systems.
JavaScriptCore
- Supported Devices: iPhone XS and newer, iPad Pro (13-inch and later), iPad Pro (12.9-inch 3rd generation and newer), iPad Pro (11-inch 1st generation and newer), iPad Air (3rd generation and newer), iPad (7th generation and newer), and iPad mini (5th generation and newer).
- Risk: Maliciously crafted web content could allow arbitrary code execution. Apple has received reports of this vulnerability being actively exploited on Intel-based Mac systems.
- Solution: The problem has been resolved with enhanced verification measures.
- CVE-2024-44308: Credit to Clément Lecigne and Benoît Sevens from Google’s Threat Analysis Group.
WebKit
- Supported Devices: iPhone XS and newer, iPad Pro (13-inch and later), iPad Pro (12.9-inch 3rd generation and newer), iPad Pro (11-inch 1st generation and newer), iPad Air (3rd generation and newer), iPad (7th generation and newer), and iPad mini (5th generation and newer).
- Risk: Maliciously crafted web content could enable a cross-site scripting attack. Apple acknowledges reports of this issue being actively exploited on Intel-based Mac systems.
- Solution: An issue related to cookie management has been fixed with improved state management.
- CVE-2024-44309: Credit to Clément Lecigne and Benoît Sevens from Google’s Threat Analysis Group.
To update your iPhone and iPad to iOS 18.1.1 or iPadOS 18.1.1, navigate to the Settings app, select General, and then choose Software Update.
To update your Mac to macOS Sequoia 15.1.1, go to System Settings, select General, and then click on Software Update.
While Apple mentions that these vulnerabilities have only been exploited on Intel-based Macs so far, it is essential to update your devices promptly to safeguard against potential threats.
My top iPhone accessories:
Connect with Chance: Threads, Bluesky, Instagram, and Mastodon.
FTC: We utilize income-generating auto affiliate links. More.
![60 Essential Mac Tips for New Setups: macOS Sequoia Edition [Video]](data:image/svg+xml;base64,PHN2ZyB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciIHZpZXdCb3g9IjAgMCAxIDEiIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIGRhdGEtdT0iaHR0cHMlM0ElMkYlMkZpMC53cC5jb20lMkY5dG81bWFjLmNvbSUyRndwLWNvbnRlbnQlMkZ1cGxvYWRzJTJGc2l0ZXMlMkY2JTJGMjAyNCUyRjEwJTJGTWFjLW1pbmktU2VxdW9pYS1TdHVkaW8tRGlzcGxheS1GSS0wMy5qcGclM0ZyZXNpemUlM0QxMjAwJTI1MkM2MjglMjZxdWFsaXR5JTNEODIlMjZzdHJpcCUzRGFsbCUyNnNzbCUzRDEiIGRhdGEtdz0iMSIgZGF0YS1oPSIxIiBkYXRhLWJpcD0iIj48L3N2Zz4= "60 Essential Mac Tips for New Setups: macOS Sequoia Edition [Video]")
