Apple warns to upgrade to iOS 17.1.2 fixing two major zero-day vulnerabilities

By Aadil Raval • Updated On 1 Dec 2023

Like
Comment
Share

Apple released iOS 17.1.2 and iPadOS 17.1.2 earlier on Thursday with patches for a few zero-day vulnerabilities that were discovered lately. Both the zero-day vulnerabilities were related to WebKit browser engine affecting iPhone XS and later, iPad Pro 10.5” and 11” 1st-gen and later, iPad Air 3rd-gen and later, iPad Pro 12.9” 2nd-gen, as well as iPad 6th-gen & later and finally, iPad mini 5th & later.

According to the reports, the first vulnerability, if exploited, would’ve allowed attackers to find sensitive information when the device is processing web content. Identified as CVE-2023-4291, the vulnerability was discovered by Clement Lecigne of Threat Analysis Group at Google. The Cupertino-based giant has been aware of the issue that affects ioS 16.7.1 and older.

The report adds the flaw would allow attackers to read beyond buffer potentially exposing sensitive information such as bank accounts and credit cards details.

The second of the flaws identified as CVE-2023-42917 deals with the web content processing where an arbitrary code execution would allow attackers to run code or commands potentially stealing personal information. Unfortunately, some of the users might have already been victim to these vulnerabilities on iPhones and iPads running iOS 16.7.1 and other.

In any case, the iOS 17.2 and iPadOS 17.2 has successfully patched these issues. You can check out for the OTA update via Settings >> General >> Software Update.

You can follow Smartprix on Twitter, Facebook, Instagram, and Google News. Visit smartprix.com for the most recent news, reviews, and tech guides.

Aadil Raval

Google Pixel 7 Pro User Shares Frustrating Reality of Google Service Centers in India

The service experience at Google Pixel service centers in India can be mixed, as illustrated by a recent experience shared by a user-facing slow charging issues with his Google Pixel 7 Pro. This article delves into the specifics of his ordeal and the challenges encountered with the service center. The Service Center Saga The user’s journey (MohipGhosh1 …

iOS 16.4.1 and iPad 16.4.1 rolls out with key vulnerabilities fixes

Cupertino-based tech giant Apple has released both iOS 16.4.1 and iPadOS 16.4.1 for iPhones and iPads, respectively. The update comes after vulnerabilities were detected in the previous iteration of the iOS affecting Siri and other functions. First, the IOSurfaceAcceralator vulnerability has been fixed. It could’ve allowed an app to execute arbitrary code having been equipped …

Apple’s 1st event of 2022 might take place on this date, iPhone SE 3 and some other products to get a launch

Apple is one such tech giant, regarding which there’s always anticipation in the tech world. What Apple will launch and when keeps making news all the time. This time Apple is expected to have a busy 2022 just like previous years and the date for the first set of products to be launched is finally …

Apple users facing issues updating to iOS 17.3; Here’s the possible workarounds

iOS 17.3 is here and brings one of the most-awaited features – the Stolen Device Protection. Apple has already asked users to get their iOS 17.3 update done as it also carries a fix for a zero-day vulnerability. However, it seems like some users are facing difficulty in getting their share of the iOS 17.3 …

iOS 17.1.2 on the way to fix Wi-Fi connectivity issues on iPhones

Apple debuted iOS 17 in September 2023 and since then, it has seen mixed reviews from users claiming it as one of the best while others are battling the various issues targeting a subset of the users. One such issue is around Wi-Fi connectivity and speeds that have plagued iPhone users after upgrading to iOS …