Skip to main content
Apple Releases Security Updates
Report a cyber attack: call 0300 303 5222 or email carecert@nhsdigital.nhs.uk

Threat details

Introduction

Apple has released a security update to address two actively exploited zero-day vulnerabilities. The first vulnerability, also known as FORCEDENTRY, is related an integer overflow bug that could allow an attacker to create PDF documents that can execute commands when opened in iOS and macOS.  The second vulnerability could allow an attacker to create a malicious web page that can execute commands when visited by iOS and macOS devices such as an iPhone.  An attacker could exploit some of these vulnerabilities to take control of an affected device.


Remediation advice

Affected organisations are encouraged to review the Apple security page and apply the necessary updates.


Remediation steps


Last edited: 14 September 2021 11:33 am