Apple has rolled out new security updates for iOS, iPad, macOS, visions, and Safari to tackle the two zero-day vulnerabilities:
- CVE-2024-44308: it is a JavaScript Core flaw that allows malicious web content to execute arbitrary code.
- CVE-2024-44309: A WebKit cookie is a management bug that permits cross-site scripting ( XSS) to be able to attack with malicious content.
This problem was reportedly discovered by researchers from Google’s Threat Analysis Group (TAG), who believed they had been targeted through spyware attacks, particularly those affecting Intel-based Mac systems.
Read more: Apple expected to enter smart TV market with Smart Home Hub
Apple updates are available for various devices, such as iPhones, iPads, Macs, and the Apple Vision Pro. The total flaws were for four zero-days this year.
There is no certain information about the nature of these exploitations.
However, Apple has addressed these problems and requests users to update their devices for the prevention of any kind of security risk.