To fix a number of security flaws, including one actively used zero-day bug in the wild, Apple has released security upgrades for iOS, iPadOS, macOS, tvOS, watchOS, and Safari. The kernel flaw, known as CVE-2023-38606, might allow a malicious software to possibly change important kernel state. The business claimed that better state management had been used to remedy it.
It’s important to note that CVE-2023-38606 is the fourth security flaw identified in relation with Operation Triangulation, a sophisticated mobile cyber espionage campaign utilising a zero-click attack chain that has been focusing on iOS devices since 2019. Apple patched the other two zero-days, CVE-2023-32434 and CVE-2023-32435, last month.