Apple patches major security flaw — update your iPhone and Mac now

A person holding a blue iPhone 13 in both hands
(Image credit: Shutterstock)

iPhone and Mac users will want to download and install the latest security updates from Apple as the company has patched a zero-day vulnerability that has been exploited in attacks since the beginning of this year.

As reported by BleepingComputer, the iPhone maker released a set of security advisories revealing that the company is aware of reports that this new security flaw “may have been actively exploited’ by hackers.

The zero-day vulnerability, tracked as CVE-2022-32917 and discovered by an anonymous researcher, could allow malicious apps to execute arbitrary code with kernel privileges. Fortunately, Apple has addressed this security flaw with the release of iOS 15.7, iPadOS 15.7, macOS Monterey 12.6 and macOS Big Sur 11.7 through improved bound checks.

If you have an iPhone 6S or later, any model of iPad Pro, iPad Air 2 or later, iPad 5th generation or later, iPad mini 4 or later or an iPod touch (7th gen), you’ll want to ensure you’re running the latest software from Apple. To do so, check out our guide on how to update an iPhone and for all other devices, this support document from Apple should have you covered.

Busy patching zero-days

In addition to this latest zero-day, Apple has also backported patches for another zero-day (tracked as CVE-2022-32894) to Macs running macOS Big Sur 11.7. Security updates were released back in August to patch the issue on older iPhones and iPads.

In fact, Apple has been quite busy patching zero-day vulnerabilities this year with seven others fixed so far. 

At the beginning of the year in January, the company patched two zero-days that enabled code execution with kernel privileges and web browsing activity tracking. Then in February, Apple released fixes for another WebKit zero-day being used in attacks against iPhones, iPads and Macs. In March, the company patched a zero-day in the Intel Graphics Driver and AppleAVD. Finally, in August, Apple patched two zero-day flaws in the iOS Kernel and WebKit.

Updating to iOS 16 will keep you protected 

iOS 16

(Image credit: Shutterstock)

If you’re concerned about your iPhone being attacked by exploits using this recently patched zero-day vulnerability, then your best bet is to update to iOS 16. Thankfully, we have a guide on how to download iOS 16 ready to go, so you can ensure your iPhone is running the latest software from Apple.

TOPICS
Anthony Spadafora
Managing Editor Security and Home Office

Anthony Spadafora is the managing editor for security and home office furniture at Tom’s Guide where he covers everything from data breaches to password managers and the best way to cover your whole home or business with Wi-Fi. He also reviews standing desks, office chairs and other home office accessories with a penchant for building desk setups. Before joining the team, Anthony wrote for ITProPortal while living in Korea and later for TechRadar Pro after moving back to the US. Based in Houston, Texas, when he’s not writing Anthony can be found tinkering with PCs and game consoles, managing cables and upgrading his smart home. 

Read more
iPhone 16 Pro shown held in hand
Apple just patched its first zero-day flaw of the year — update your iPhone and Mac right now
Apple iPhone 16 Plus Review.
Apple just released an emergency security update for a flaw used in an ‘extremely sophisticated attack’ — update your devices right now
Apple iPhone 16 held in the hand.
iOS 18.3.1 — update your iPhone right now to fix critical zero-day vulnerability
MacBook Pro 16-inch 2021 sitting on a patio table
Critical macOS flaw puts your data and cameras at risk — update right now
Google Pixel 9 held in the hand.
Google just fixed a zero-day kernel flaw used by hackers and 47 other vulnerabilities — update your Android phone right now
Windows
240 million Windows 10 users are vulnerable to six different hacker exploits — protect yourself now
Latest in iPhones
iPhone 17 Pro render
iPhone 17 Ultra just tipped to replace Pro Max in new leak — with these key upgrades
RCS messaging on an iPhone
Forget green bubbles — iPhones will soon get encrypted RCS messaging to Androids
iPhone 17 Pro render
iPhone 17 Pro Max leak claims it’s ready for production — and seems to confirm its new design
iPhone 16e review.
iPhone 16e is facing Bluetooth problems — here's what's going on
iPhone 17 Air vs iPhone 17 Pro Max
iPhone 17 Air vs iPhone 17 Pro Max: Everything we know so far
iOS 19 logo on an iPhone
iOS 19 risks turning Apple Intelligence into the new Siri — and that's not good
Latest in News
NYTimes Connections
NYT Connections today hints and answers — Saturday, March 15 (#643)
iPhone 17 Pro render
iPhone 17 Ultra just tipped to replace Pro Max in new leak — with these key upgrades
RCS messaging on an iPhone
Forget green bubbles — iPhones will soon get encrypted RCS messaging to Androids
CAD renderings of the Google Pixel 10 Pro
Latest Google Pixel 10 leak could make you want to skip it altogether
Nintendo Switch 2
Nintendo Switch 2 — analysts say it will be massive hit even with price hike
Jason Sudeikis as Ted Lasso in Ted Lasso season 3
‘Ted Lasso’ season 4 is official — here’s what Jason Sudeikis revealed