Apple has released urgent security updates to address multiple flaws in iOS, iPadOS, macOS and WatchOS, including two actively exploited zero-day CVE-2023-41064 and CVE-2023-41061.
Security Risks
Successful exploitation of a zero-day vulnerability enables an attacker to exploit some of these vulnerabilities to take control of an affected device.
For the full list of security updates released by Apple, please refer to Apple Security Updates.
Recommended Actions
The National Cyber Security Authority (NCSA) recommends users and system administrators to:
1. Upgrade, as soon as possible, to the latest supported version of installed Apple software in order to continue receiving technical support and security patches.
The released software versions to upgrade to are the following:
iOS 16.6.1 and iPadOS 16.6.1 : for iPhone 8 and later, iPad Pro (all models), iPad Air 3rd Gen. and later, iPad 5th generation and later, and iPad mini 5th Gen. and later.