Apple has released security updates that fix a WebKit zero-day vulnerability (CVE-2023-23529) that “may have been actively exploited.” The bug has been fixed in iOS 16.3.1 and iPadOS 16.3.1, macOS Ventura 13.2.1, Safari 16.3.1, and possibly also in tvOS 16.3.2 and watchOS 9.3.1 – though release notes for the updates for those Internet of Things operating systems have been temporarily witheld. About CVE-2023-23529 CVE-2023-23529 is a type confusion issue in WebKit, the browser engine powering … More
The post Apple fixes actively exploited WebKit zero-day in iOS, macOS (CVE-2023-23529) appeared first on Help Net Security.