SingCERT urges Apple users to patch security vulnerabilities in their products immediately
The vulnerabilities can be exploited by hackers to gain control over targeted systems.
Apple users are urged to patch their products against two identified zero-day critical vulnerabilities, according to an advisory by the Singapore Computer Emergency Response Team (SingCERT) on Tuesday (Sep 13).
Under the Cyber Security Agency of Singapore (CSA), SingCERT facilitates the detection, resolution and prevention of cybersecurity incidents for Singapore.
The advisory mentioned patching the products affected by the vulnerabilities to their latest versions, namely the Safari 16 web browser, macOS Monterey 12.6, macOS Big Sur 11.7, iOS 16, iOS 15.7 and iPad OS 15.7.
Between Sep 12 and Sep 15, Apple released eight security updates. Users can download the patches by doing a software update through their device’s settings.
Apple users are also advised by SingCERT to enable automatic software updates on their products.
Zero-day vulnerabilities are unpatched security issues unknown to the software or its developer. The two identified vulnerabilities are known as CVE-2022-32917 and CVE-2022-32894.
For both vulnerabilities, attackers make use of a malicious application to exploit them, granting them control to the systems they target.