November 30, 2023 at 02:54PM
Apple’s security team reports that older iOS versions, prior to 16.7.1, were exploited due to flaws CVE-2023-42916 and CVE-2023-42917. Patches for these WebKit vulnerabilities have been released for affected iPhones.
Meeting Takeaways:
1. Apple’s security response team has identified that vulnerabilities designated as CVE-2023-42916 and CVE-2023-42917 have been exploited.
2. The exploited flaws affected versions of iOS prior to iOS 16.7.1.
3. Apple has addressed these vulnerabilities with patches.
4. The information regarding the patch for these WebKit flaws has been publicized through a post with the title “Apple Patches WebKit Flaws Exploited on Older iPhones” on SecurityWeek.
Action Items:
– Ensure any devices running iOS are updated to the latest version, specifically version 16.7.1 or higher if available, to mitigate these security vulnerabilities.
– Communicate this information to relevant stakeholders and IT support staff for immediate action.
– Monitor updates from Apple’s security response team for any additional recommendations or required actions.