Apple urges users to update software immediately after finding 'serious security vulnerabilities'
| Last updated
Apple has urged iPhone, iPad and Mac users to update their software immediately after finding 'serious security vulnerabilities'.
The tech company revealed a 'surprise' update this week that helps address two issues that can be 'actively exploited by attackers', according to TechCrunch.
The bugs were found in the WebKit and Kernel components of the iOS, iPadOS and macOS Monterey software.
Apple said the Webkit issue allowed for the processing of 'maliciously crafted web content' that 'may lead to arbitrary code execution'.
The company said the issue can affect iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation).
The twin bugs were identified by 'anonymous researchers'.
TechCrunch says the Kernel bug could allow a hacker to gain 'full' access to your device, where they could pinch 'the user’s sensitive data'.
This isn't the first time Apple has had to issue a warning to users about updating their software.
Tech companies are constantly under threat from conniving hackers, so they always have to try and be one step in front.
In April this year, a similar issue with Kernel software was detected.
One of the vulnerabilities was called CVE-2022-22675, and was similarly detected across iPhone, iPad and Mac.
According to experts, it could have allowed criminals to perform malicious code with kernel privileges, meaning they could target a device's systems and hardware.
The second issue, CVE-2022-22674, affected macOS and could have caused a disclosure of kernel memory – memory used by an operating system.
Apple didn't expand on whether or not it had detected instances where these vulnerabilities had been utilised by hackers to access people's devices.
Another update was issued in January last year.
The tech giant revealed that its security systems 'may have been actively exploited' and that the new iOS 14.4 software will help protect users from attack.
In a post to its support page, Apple said the company had identified three security flaws, but that it could 'not disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available'.
According to the company, two of the three flaws identified were found in WebKit, an open-source browser engine that is used by Safari. It's understood the bugs found allow hackers to 'cause arbitrary code execution'.
A third was found in Kernel, which is part of Apple's operating software framework.