Zero-Day Vulnerability in Apple Products

Published on 17 May 2022

Updated on 17 May 2022

Apple has released a security update to address a zero-day vulnerability (CVE-2022-22675) that may have been actively exploited.

 

Successful exploitation of the vulnerability could allow an attacker to execute commands on users' devices remotely. 

 

Users are advised to patch their products to the latest versions immediately:

 

  • macOS Big Sur 11.6.6: Available for macOS Big Sur
  • tvOS 15.5: Apple TV 4K, Apple TV 4K (2nd generation), and Apple TV HD
  • watchOS 8.6: Apple Watch Series 3 and later


Users are also advised to enable automatic software updates by going to Settings > General > Software Updates > Enable Automatic Updates.

 

More information is available here:
https://www.bleepingcomputer.com/news/security/apple-emergency-update-fixes-zero-day-used-to-hack-macs-watches/

https://support.apple.com/en-sg/HT213253

https://support.apple.com/en-sg/HT213254
https://support.apple.com/en-sg/HT213256