Article

Alert: Compiled Apple Security Updates – March 2024

Apple has released critical security updates for Safari, macOS, watchOS, tvOS, and visionOS. These updates address vulnerabilities, including two zero-day issues (CVE-2024-23225 and CVE-2024-23296), impacting iPhones.

Security Risks

Successful exploitation of this vulnerability empowers an attacker to gain control over an affected device by exploiting its identified weaknesses.

For the full list of security updates released by Apple, please refer to Apple security releases.

Recommended Actions

The National Cyber Security Authority (NCSA) recommends users and system administrators to:

1. Upgrade, as soon as possible, to the latest supported version of installed Apple software in order to continue receiving technical support and security patches.

The following software versions are released for upgrade:

iOS 17.4 and iPadOS 17.4: iPhone XS and later, iPad Pro 12.9-inch 2nd generation and later, iPad Pro 10.5-inch, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 6th generation and later, iPad mini 5th generation and later.
iOS 16.7.6 and iPadOS 16.7.6: iPhone 8 and later, iPad Pro (all models), iPad Air 3rd generation and later, iPad 5th generation and later, and iPad mini 5th generation and later.
iOS 15.8.2 and iPadOS 15.8.2: iPhone 6s (all models), iPhone 7 (all models), iPhone SE (1st generation), iPad Air 2, iPad mini (4th generation), and iPod touch (7th generation).
macOS Sonoma 14.4: for all Mac running macOS Sonoma.
macOS Ventura 13.6.5: for all Mac running macOS Ventura.
macOS Monterey 12.7.4: for all Mac running macOS Monterey.
tvOS 17.4: Apple TV HD and Apple TV 4K (all models).
watchOS 10.4: Apple Watch Series 4 and later.
visionOS 1.1: for Apple Vision Pro.
Safari 17.4: macOS Monterey and macOS Ventura.

2. Enable background updates or automatic updates

3. Before any update task, ensure you have backup for your data.

For further information and support, please contact the National Cyber Security Authority (NCSA) by email to rwcsirt@ncsa.gov.rw or call us on 9009.

References

https://support.apple.com/en-us/HT201222.

12 March 2024

More updates

23 April 2024

Alert: Cisco Security Updates – April 2024

Cisco has released security updates to address vulnerabilities in multiple Cisco products.

22 April 2024

Alert: Oracle Security Updates – April 2024

Oracle has released its April 2024 Critical Patch Update (CPU), containing 441 security patches to address 230 vulnerabilities across various Oracle…

11 April 2024

Alert: Fortinet Security Updates – April 2024

Fortinet has released security updates to address vulnerabilities in multiple products.

11 April 2024

Alert: Adobe Security Updates – April 2024

Adobe has released security updates to address multiple vulnerabilities in its software.

Apple has released critical security updates for Safari, macOS, watchOS, tvOS, and visionOS. These updates address vulnerabilities, including two zero-day issues (CVE-2024-23225 and CVE-2024-23296), impacting iPhones.

Security Risks

Successful exploitation of this vulnerability empowers an attacker to gain control over an affected device by exploiting its identified weaknesses.

For the full list of security updates released by Apple, please refer to Apple security releases.

Recommended Actions

The National Cyber Security Authority (NCSA) recommends users and system administrators to:

1. Upgrade, as soon as possible, to the latest supported version of installed Apple software in order to continue receiving technical support and security patches.

The following software versions are released for upgrade:

iOS 17.4 and iPadOS 17.4: iPhone XS and later, iPad Pro 12.9-inch 2nd generation and later, iPad Pro 10.5-inch, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 6th generation and later, iPad mini 5th generation and later.

iOS 16.7.6 and iPadOS 16.7.6: iPhone 8 and later, iPad Pro (all models), iPad Air 3rd generation and later, iPad 5th generation and later, and iPad mini 5th generation and later.

iOS 15.8.2 and iPadOS 15.8.2: iPhone 6s (all models), iPhone 7 (all models), iPhone SE (1st generation), iPad Air 2, iPad mini (4th generation), and iPod touch (7th generation).

macOS Sonoma 14.4: for all Mac running macOS Sonoma.

macOS Ventura 13.6.5: for all Mac running macOS Ventura.

macOS Monterey 12.7.4: for all Mac running macOS Monterey.

tvOS 17.4: Apple TV HD and Apple TV 4K (all models).

watchOS 10.4: Apple Watch Series 4 and later.

visionOS 1.1: for Apple Vision Pro.

Safari 17.4: macOS Monterey and macOS Ventura.

2. Enable background updates or automatic updates

3. Before any update task, ensure you have backup for your data.

For further information and support, please contact the National Cyber Security Authority (NCSA) by email to rwcsirt@ncsa.gov.rw or call us on 9009.

References

https://support.apple.com/en-us/HT201222.

	info@ncsa.gov.rw
	9009 / 0781813310
	‎+250 791 445 224