Arbitrary Code Execution Vulnerabilities in Apple Products (CVE-2023-41061 & CVE-2023-41064)

2 zero-day arbitrary code execution vulnerabilities (CVE-2023-41061 & CVE-2023-41064) were identified in Apple products.  Users are urged to apply the latest patch on affected devices immediately.

 

Vulnerability

  • Arbitrary Code Execution Vulnerability (CVE-2023-41061 & CVE-2023-41064)

 

Severity Level

  • Critical

 

Affected products

  • For CVE-2023-41061
    • iOS before 16.6.1
    • watchOS before 9.6.2
    • iPadOS before16.6.1

 

  • For CVE-2023-41064
    • macOS Ventura before 13.5.2
    • macOS Monterey before 12.6.9
    • macOS Big Sur before 11.7.10
    • iOS and iPadOS before 16.6.1
    • iOS and iPadOS before 15.7.9

 

Remediation

  • Apply the latest patch on affected device versions ASAP.

 

Reference

 

Enquiry

 

 

Published on: 14 Sep 2023