Skip to main content

Security Alert: Urgent Apple macOS, iOS, and iPadOS Updates

Date:
2024-11-21 15:42:00
Status:
Open
Brief Description:
Zero-day vulnerabilities in Apple Safari on macOS, iOS, and iPadOS under active exploitation may allow arbitrary code execution. Patch now.
Current Status:
N/A
Services Affected:
Certified Desktop
Full Description:
Zero-day vulnerabilities in Apple Safari on macOS, iOS, and iPadOS under active exploitation may allow arbitrary code execution. While Apple indicates they have only observed known exploitation on Intel-based Macs, these security fixes apply to all platforms. Patch now. 
 
Certified Desktop customers: 
Updates to macOS Sequoia 15.1.1 will be facilitated via Nudge with a 7-day deadline from their release. The relevant update to Safari is bundled into this OS update on macOS 15 Sequoia. 
 
Updates to Safari 18.1.1 for users of macOS computers running macOS 14 Sonoma or macOS 13 Ventura will be available via Self Service with a 7-day deadline. Updates can also be manually done by following the process described in “Apple – Update macOS on Mac” in the “How to Update” links below. 
 
For unmanaged computers and all mobile devices: 
Apply the relevant software update listed under “References” below. See the “How to Update” links for details on how to update your device. 
 
References: 
Apple Security Releases: https://support.apple.com/en-us/100100  
Apple – macOS Sequoia 15.1.1: https://support.apple.com/en-us/121753  
Apple – Safari 18.1.1: https://support.apple.com/en-us/121756  
Apple – iOS 18.1.1 and iPadOS 18.1.1: https://support.apple.com/en-us/121752  
Apple – iOS 17.7.2 and iPadOS 17.7.2: https://support.apple.com/en-us/121754  
 
How to Update: 
Apple – Update macOS on Mac: https://support.apple.com/en-us/108382  
Apple – Update your iPhone or iPad: https://support.apple.com/en-us/118575  
IT@Cornell – macOS Updates via Nudge: https://it.cornell.edu/endpoint-mgmt/macos-updates-nudge  
CIT TDX ID: