Security Alert (A24-07-24): Multiple Vulnerabilities in Apple iOS and iPadOS


 

Published on: 30 July 2024

  
  

Description:

Apple has released iOS 16.7.9, iOS 17.6, iPadOS 16.7.9 and iPadOS 17.6 to fix the vulnerabilities in various Apple devices. The list of vulnerability information can be found at:
https://support.apple.com/en-us/HT214116
https://support.apple.com/en-us/HT214117

 

Affected Systems:

  • iPhone 8 and later
  • iPad 5th generation and later, Air 3rd generation and later, mini 5th generation and later, Pro 9.7-inch, Pro 10.5-inch, Pro 11-inch 1st generation and later, Pro 12.9-inch 1st generation and later, Pro 13-inch

 

Impact:

Depending on the vulnerabilities being exploited, a successful exploitation could lead to denial of service, elevation of privilege, information disclosure, security restriction bypass or spoofing on an affected device.

 

Recommendation:

Apple has released new version of iOS and iPadOS to address the issue.

The updates can be obtained through the auto-update mechanism. Users of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.

 

More Information:

  • https://support.apple.com/en-us/HT214116
  • https://support.apple.com/en-us/HT214117
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6277
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52356
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4558
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27863
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27871
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27873
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40774
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40776 (to CVE-2024-40780)
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40782
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40784 (to CVE-2024-40789)
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40793 (to CVE-2024-40796)
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40798 (to CVE-2024-40799)
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40805 (to CVE-2024-40806)
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40809
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40812 (to CVE-2024-40813)
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40815
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40818
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40822
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40824
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40829
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40833
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40835 (to CVE-2024-40836)


Tag: Apple , iOS , iPhone , iPad , iPadOS
Tags