Apple has released security updates to address two vulnerabilities (CVE-2021-30860 and CVE-2021-30858) in its products. There are reports that these vulnerabilities may have been actively exploited.
Successful exploitation of the vulnerabilities may lead to arbitrary code execution on affected products.
Users are advised to patch their products to the latest versions immediately:
- iOS 14.8 and iPadOS 14.8: Available for iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)
- MacOS Big Sur 11.6: Available for macOS Big Sur
- WatchOS 7.6.2: Available for Apple Watch Series 3 and later
Users are also recommended to enable automatic software update by going to Settings > General > Software Updates > Enable Automatic Updates.
More information is available here: