Apple has rolled out critical security updates addressing two actively exploited vulnerabilities, CVE-2024-44308 and CVE-2024-44309, discovered by Google’s Threat Analysis Group.
CVE-2024-44308 allows attackers to create malicious web content for arbitrary code execution on Intel-based Macs, leading to possible severe exploitation, as the issue has already been detected in the wild.
The second vulnerability, CVE-2024-44309, addresses cookie management flaws specifically on Intel-based Macs, which were mitigated through improvements in state management to enhance security.
Notably, this year Apple has already dealt with four other zero-day vulnerabilities, reinforcing the ongoing challenges in cybersecurity and the importance of prompt updates for device security.
Collection
[
|
...
]