Apple recently released upgrades for its operating systems that include security fixes for vulnerabilities that may have previously been leveraged to target its consumers.
The updates are now available for Macs, iPhones, iPads, Vision Pro, and Safari. Apple said in its notes that the security fixes will correct flaws in WebKit, Safari’s rendering engine, and JavaScriptCore, which runs JavaScript code on macOS and iOS devices.
If JavaScriptCore is tricked into processing “maliciously crafted web content,” it may execute arbitrary code, according to Apple. Meanwhile, if WebKit is deceived into processing malicious content, it can be used to launch cross-site scripting assaults.
The company said it is aware of reports that the vulnerabilities could have been actively exploited on Intel-based Mac systems. According to TechCrunch, the issues are zero-day vulnerabilities, meaning Apple was unaware of their existence when they were exploited.
According to reports, researchers from Google’s Threat Analysis Group uncovered the vulnerabilities. The organization is notable for detecting and evaluating government-sponsored hacking and attacks.
Apple did not indicate how many devices had been attacked using exploits based on the issues, nor did it say whether any information had been stolen from the targets.
Users of Macs, iPads, and iPhones should check for the most recent updates to ensure that the security changes are installed as quickly as possible.
