"Hot News"

iOS 14.4.2 patches an actively exploited vulnerability

 iOS 14.4.2 patches an actively exploited vulnerability

Apple has released two new minor updates for iOS and watchOS devices, and the company recommends all tickets for iOS 14.4.2 and watchOS 7.3.3 as soon as possible.

vulnerability,ipados 14.4.2,ios 14.4.2,security patch,apple watchos,ios 14.4 battery life,battery life ios 14.4,ios 14.4 changes,ios 14.4 released,ios 14.4 features,ios 14.4 whats new,ios 14.4 security,brandon butch ios 14,ios 14.4 performance,14.4 hack,news latest,ios 14.4 hack,brandon butch,iphone 12 14.4,news headlines,ios 14.3 vs 14.4,ios 14.4 download,iphone 12 ios 14.4,ios 12.5.2,ios 14.4,attackers,news reporter,news bloopers,ios 14.4 review,news today update,update,news usa,security

As part of that, Apple has prepared a similar security update to iOS 12.5.2 for older devices, such as: iPhone 5S or iPhone 6, which do not run iOS 14.

Like iOS 14.4.1 and macOS 11.2.3 before them, they are both working to fix a vulnerability.

Unlike large software updates, which may bring in some refreshing updates, iOS 14.4.2, iPadOS 14.4.2, and watchOS 7.3.3 were rolled out, exploiting a vulnerability in the WebKit browser engine.

The vulnerability allows malicious websites to execute scripting across sites, allowing someone to obtain information from other webpages that you have opened on your device.

And Apple notes that it has at least one report about someone exploiting the vulnerability, and the company said: The threat may have been actively exploited, so it is not just a potential threat.

The threat, which has been corrected by the latest operating system update from Apple, is listed as CVE-2021-1879 and has been detailed for the first time by (Clement Lecigne) and (Billy Leonard) Billy Leonard of the Google Threat Analysis Group.

The vulnerability is described as a 0-Day exploit affecting a wide range of Apple devices, including the iPhone 6s and later, all iPad Pro models, and Apple Watch Series 3 and later - basically any previous model of iPhone, iPad, Apple Watch, and iPod Touch.

According to Apple, this update provides important security updates and is recommended for all users.

The surprise release of iOS 14.4.2 is the latest in a series of urgent security fixes in recent weeks.

Cross-site scripting gives attackers multiple means to attack you, and this may include redirecting you to a phishing site or malicious site, performing cross-site actions on your behalf, or even obtaining information from your browsing session.

Given this is in WebKit, it could affect any website you visit, and it may also affect many applications.