Apple has just released a series of Rapid Security Response (RSR) updates to address a new zero-day vulnerability that is being actively exploited by hackers.
According to Neowin, the bug affects iPhones, Macs, and iPads, and has the potential to impact the security and integrity of these devices. The vulnerability, identified as CVE-2023-37450, was recently reported by an anonymous security researcher. According to Apple’s advice for iOS and macOS, the problem is being actively exploited by hackers
The recently discovered vulnerability resides in the WebKit that Apple, Mozilla, and Google use in iOS. The exploit can be exploited by hackers by tricking users into visiting websites containing specially crafted content, which could allow attackers to execute arbitrary code on targeted devices, potentially affecting user privacy and security.
Apple emphasizes that the RSR update program is only available for the latest versions of iOS, iPadOS, and macOS, starting with iOS 16.4.1, iPadOS 16.4.1, and macOS 13.3.1. To secure data and resist attacks, users should apply RSR patches.
RSR patches were introduced as compact updates intended to address security issues between major software updates on its operating system. They provide critical security fixes to help users promptly address emerging threats.
To perform RSR updates for iPhone and iPad, users go to Settings > General > Software Update > Automatic Updates, then make sure Security Responses & System Files are turned on. For Macs, users choose Apple Menu > System Settings. Click General in the sidebar, then Software Update on the right. Click the Show Details button next to Automatic Updates, then make sure Install Security Responses and System Files is turned on