Apple Releases Critical iOS and iPadOS Updates to Fix VoiceOver Password Vulnerability

Apple Releases Critical iOS and iPadOS Updates to Fix VoiceOver Password Vulnerability

October 5, 2024 at 01:30AM

Apple has released iOS and iPadOS updates addressing two security issues. One flaw could enable VoiceOver to read out a user’s passwords, impacting various iPhone and iPad models. Another vulnerability allowed capturing audio before the microphone indicator is on. Users are urged to update to iOS 18.0.1 and iPadOS 18.0.1 to mitigate these risks.

Key takeaways from the meeting notes:

1. Apple has released iOS and iPadOS updates to address two security issues.
2. The first vulnerability (CVE-2024-44204) allowed a user’s passwords to be read aloud by VoiceOver and impacted several iPhones and iPads.
3. The impacted devices include iPhone XS and later, multiple iPad Pro models, iPad Air, iPad 7th generation, and iPad mini 5th generation.
4. The second vulnerability (CVE-2024-44207) was specific to the newly launched iPhone 16 models and allowed audio to be captured before the microphone indicator is on, rooted in the Media Session component.
5. Users are advised to update to iOS 18.0.1 and iPadOS 18.0.1 to safeguard their devices against these potential risks.

Full Article