Skip to main content

PSA: Update your iPhone and Mac asap, to fix an active zero-day security vulnerability

Even if you like to wait for new iOS and macOS updates to settle down before you take the plunge, you will want to update your iPhone and Mac asap, even if you opt to remain on iOS 15 for now. On iPhones, Apple is offering a choice between iOS 15.7 and iOS 16 when you update.

An update is urgent because iOS 15.7 (and iOS 16) and macOS Monterey 12.6 fix zero-day security vulnerabilities, which Apple says may currently be in active use by attackers …

Bleeping Computer reports:

Apple has released security updates to address the eighth zero-day vulnerability used in attacks against iPhones and Macs since the start of the year.

In security advisories issued on Monday, Apple revealed they’re aware of reports saying this security flaw “may have been actively exploited.”

The bug (tracked as CVE-2022-32917) may allow maliciously crafted applications to execute arbitrary code with kernel privileges.

“Execute arbitrary code with kernel privileges” is a way of saying that an attacker can do a lot of things, with the right combination of exploits.

The list of vulnerable devices is extensive:

  • All Macs running macOS Big Sur 11.7 and macOS Monterey 12.6
  • All iPhones from the iPhone 6s
  • All iPads from iPad Air 2/iPad 5/iPad mini 4
  • iPod Touch (7th-gen)

The site notes that Apple is being deliberately cautious in the limited information it has released so far.

Although Apple disclosed active exploitation of this vulnerability in the wild, the company is yet to release any information regarding these attacks.

By refusing to release this info, Apple likely wants to allow as many customers as possible to patch their devices before other attackers develop their own exploits and start deploying them in attacks targeting vulnerable iPhones and Macs.

Bleeping Computer says that this is the 8th zero-day vulnerability patched by Apple so far this year.

Most vulnerabilities are used in targeted attacks, but some are used more widely, so it’s always good practice to update your iPhone and other Apple devices as soon as possible.

On your iPhone, go to Settings > General > Software Update and choose between iOS 15.7 and iOS 16. On your Mac, go to  > About this Mac > Software Update.

Photo: Adi Goldstein/Unsplash

FTC: We use income earning auto affiliate links. More.

You’re reading 9to5Mac — experts who break news about Apple and its surrounding ecosystem, day after day. Be sure to check out our homepage for all the latest news, and follow 9to5Mac on Twitter, Facebook, and LinkedIn to stay in the loop. Don’t know where to start? Check out our exclusive stories, reviews, how-tos, and subscribe to our YouTube channel

Comments

Author

Avatar for Ben Lovejoy Ben Lovejoy

Ben Lovejoy is a British technology writer and EU Editor for 9to5Mac. He’s known for his op-eds and diary pieces, exploring his experience of Apple products over time, for a more rounded review. He also writes fiction, with two technothriller novels, a couple of SF shorts and a rom-com!


Ben Lovejoy's favorite gear

Manage push notifications

notification icon
We would like to show you notifications for the latest news and updates.
notification icon
You are subscribed to notifications
notification icon
We would like to show you notifications for the latest news and updates.
notification icon
You are subscribed to notifications