Apple Releases Security Updates for Multiple Products
Scheduled updates for Apple products
Summary
Scheduled updates for Apple products
Affected platforms
The following platforms are known to be affected:
Threat details
Introduction
Apple has released security updates to address vulnerabilities in multiple products. The updates include patches for the two zero-day vulnerabilities CVE-2022-32893 and CVE-2022-32894. CVE-2022-32893 affects WebKit and could allow an attacker to perform arbitrary code execution, and CVE-2022-32894 could allow an attacker to execute arbitrary code with kernel privileges.
CISA has added CVE-2022-32893 and CVE-2022-32894 to its known exploited vulnerabilities catalogue.
Remediation advice
Affected organisations are encouraged to review the following Apple security advisory and apply any relevant updates or workarounds.
Remediation steps
| Type | Step |
|---|---|
| Patch |
Safari 15.6.1 | HT213414 https://support.apple.com/en-gb/HT213414 |
| Patch |
macOS Monterey 12.5.1 | HT213413 https://support.apple.com/kb/HT213413 |
| Patch |
iOS 15.6.1 and iPadOS 15.6.1 | HT213412 https://support.apple.com/kb/HT213412 |
Definitive source of threat updates
CVE Vulnerabilities
Last edited: 19 August 2022 3:46 pm