Apple has launched iOS 18.1.1, an extremely essential update, and has come with an emergency patch for two critical security vulnerabilities.

They are already being actively exploited and target iPhones and Macs as well. So it is very essential that all of the users upgrade the version on their respective devices as soon as possible.

What Apple Fixed on iOS 18.1.1

Apple iPhone 16 Launches In Malaysia Apple iPhone 16 Launches In Malaysia
KUALA LUMPUR, MALAYSIA - SEPTEMBER 20: A series of iPhone 16 on display inside the Apple Inc. store at Tun Razak Exchange (TRX) on September 20, 2024 in Kuala Lumpur, Malaysia. Annice Lyn/Getty Images

It's important to note that the iOS 18.1.1 update addresses several critical vulnerabilities. In a report by Forbes, hackers can exploit the flaw within the JavaScriptCore framework. They could inject malware into an iPhone and access content without any permission.

Apple acknowledges that this issue might already be under attack, especially on Intel-based Macs.

The first bug is CVE-2024-44308 while the second bug is CVE-2024-44309 which is accessible within WebKit. For Safari browser users, be careful what you click since remote attackers can easily plant malicious scripts into the websites.

The company confirmed that this bug is also under active exploitation, similar to the JavascriptCore bug, particularly on Intel-based systems.

Why Is It Essential for iPhone Users?

The security patches in iOS 18.1.1 are reported as high-risk vulnerability patches.

As observed by cybersecurity researchers, vulnerabilities such as this may lead attackers to execute code from a distance, access confidential information, or even take control of the affected device.

Sean Wright, head of application security at Featurespace, notes that the flaw in JavaScriptCore allows attackers to redirect victims to scam sites and steal session tokens, which can result in identity theft or unauthorized access.

The WebKit vulnerability will cause all web content, including applications running in Safari, and other Apple browsers, such as iPhones, iPads, and Macs, to be compromised. This makes it very crucial for users to update their devices to protect them from these threats, as there is a high probability of exploitation.

Other Devices Affected and Updates

As for other devices, Apple has released iPadOS 18.1.1 and macOS Sequoia 15.1.1 with the same vulnerability patches.

If you haven't upgraded yet to iOS 18, but you have older devices, you can always install iOS 17.7.2, which will patch the exact vulnerabilities.

CISA Issues a Warning

The US Cybersecurity and Infrastructure Security Agency warned businesses and individual users to update with the urgency of applying either iOS 18.1.1 or iOS 17.7.2, respectively.

The vulnerabilities would allow cybercriminals to make a user's device their tool, where they might gain access both to personal data and sensitive business information by taking control of the affected device.

How to Update iOS 18.1.1

Apple had made it relatively easy to install this critical security update. To keep your device safe, go to Settings > General > Software Update to download the latest version of iOS. Users should immediately update their devices to avoid being in a position where serious exploitation of these vulnerabilities is possible.

Stay Safe with iOS 18.1.1

Considering that cyber criminals have already found ways to exploit the vulnerabilities in iOS 18.1.1, it is very essential to apply the update as soon as possible.

Don't wait—secure your device now before attackers can exploit these vulnerabilities.

© Copyright 2024 Mobile & Apps, All rights reserved. Do not reproduce without permission.