News

iOS 17.3 fixes loophole that may have been exploited by criminals

iOS 17.3 fixes a vulnerability in the WebKit rendering engine that could have been exploited by criminals. The solution is contained in the package released this Monday (22).

Among the various security fixes contained in the compilation, this may be one of the most important. The breach identified as CVE-2024-23222 allowed the loading of malicious content to pave the way for arbitrary code execution.

iOS 17.3 fixes a hole in the WebKit rendering engine that allowed arbitrary code to run.iOS 17.3 fixes a hole in the WebKit rendering engine that allowed arbitrary code to run.Source: GettyImages

According to Apple, the flaw may have been exploited by criminals — making the update even more urgent. The patch package is distributed to the following devices:

  • iPhone XS (or newer);
  • iPad Pro 12.9″ 2nd generation (or newer);
  • iPad Pro 10.5″;
  • iPad Pro 11″ 1st generation (or newer);
  • 3rd generation iPad Air (or newer);
  • 6th generation iPad (or newer);
  • 5th generation iPad mini (or newer).

A similar fix is ​​also forwarded for devices compatible with macOS 14.3 and tvOS 17.3.

All the new features of iOS 17.3

The highlight of iOS 17.3 is Stolen Device Protection (“Stolen device protection”, in free translation). The resource protects user passwords and sensitive data in cases of iPhone loss, theft or theft.

The update also introduced the ability to create collaborative playlists in Apple Music, allowing you and friends to build a single playlist in the app. The collaboration also supports emoji reactions.

The update should probably already be distributed to all users. If it hasn't arrived for you yet, it's worth checking if there are any pending updates in your iPhone settings.

Leave a Reply

Your email address will not be published. Required fields are marked *