Apple ships WebKit patch under rapid security response program

10 months ago AndyC

Apple has shipped a patch for iOS 16.5.1 and iPadOS 16.5.1 under its rapid security response program that addresses a vulnerability in the WebKit web browser engine.

Apple ships WebKit patch under rapid security response program

Apple has shipped a patch for iOS 16.5.1 and iPadOS 16.5.1 under its rapid security response program that addresses a vulnerability in the WebKit web browser engine.

The vulnerability has been assigned a common vulnerabilities and exposures identifier of CVE-2023-37450.

The discovery is attributed by Apple to “an anonymous researcher”.

Apple said that the vulnerability meant that “processing web content may lead to arbitrary code execution.”

It added that it “is aware of a report that this issue may have been actively exploited.”

Rapid security response releases are designed to deliver patches for zero-days to iOS, iPadOS and macOS between Apple’s usual patch cycle.

The first such response was released by Apple for a different vulnerability back in May.


About Author

AndyC

Andy Curtis is an award-winning security consultant, researcher and public speaker. He has been working in the computer security industry since the early 1990s, having been employed by state and federal government, leading healthcare and banking providers across three continents. He has given talks about computer security for some of the world’s largest companies, worked with law enforcement agencies on investigations into hacking groups, and is a regular voice on TV and radio explaining IT security threats.

See author's posts

Tags: , , , , , , , ,

More Stories

Calian leaders provide key insight into vital cybersecurity trends

Calian leaders provide key insight into vital cybersecurity trends

2 days ago AndyC
Rapid7 unveils patented ransomware prevention technology

Rapid7 unveils patented ransomware prevention technology

2 days ago AndyC
Exclusive: How AvePoint is tackling complex data management

Exclusive: How AvePoint is tackling complex data management

2 days ago AndyC
Cloudflare launches comprehensive suite for cyber risk management

Cloudflare launches comprehensive suite for cyber risk management

2 days ago AndyC
ManageEngine integrates Log 360 with Constella for dark web monitoring

ManageEngine integrates Log 360 with Constella for dark web monitoring

2 days ago AndyC
<div>CrowdStrike & NinjaOne unite for comprehensive cyber defence</div>

CrowdStrike & NinjaOne unite for comprehensive cyber defence

2 days ago AndyC

You may have missed

Weekly Update 399

Weekly Update 399

11 mins ago AndyC
Ohio Lottery data breach impacted over 538,000 individuals

Ohio Lottery data breach impacted over 538,000 individuals

12 hours ago AndyC
Ohio Lottery data breach impacted over 538,000 individuals

Ohio Lottery data breach impacted over 538,000 individuals

12 hours ago AndyC
Notorius threat actor IntelBroker claims the hack of the Europol

Notorius threat actor IntelBroker claims the hack of the Europol

12 hours ago AndyC
Notorius threat actor IntelBroker claims the hack of the Europol

Notorius threat actor IntelBroker claims the hack of the Europol

12 hours ago AndyC

Subscribe To InfoSec Today News

You have successfully subscribed to the newsletter

There was an error while trying to send your request. Please try again.

World Wide Crypto will use the information you provide on this form to be in touch with you and to provide updates and marketing.