Apple Family Security Update Advisory
Overview
An update has been released to address vulnerabilities in Apple products. Users of the affected versions are advised to update to the latest version.
Affected Products
CVE-2024-44204
- Apple iPhone XS or later versions: ~ 18.0.1 (excluded)
- Apple iPad Pro (13-inch, 12.9-inch 3rd generation or later, 11-inch 1st generation or later) versions: ~ 18.0.1 (excluded)
- Apple iPad Air (3rd generation or later) versions: ~ 18.0.1 (excluded)
- Apple iPad 7th generation or later versions: ~ 18.0.1 (excluded)
- Apple iPad mini 5th generation or later versions: ~ 18.0.1 (excluded)
CVE-2024-44207
- Apple iPhone 16 versions: ~ 18.0.1 (excluded)
Resolved Vulnerabilities
A user’s saved password could be read aloud by VoiceOver (CVE-2024-44204)
Audio messages in Messages could capture a few seconds of audio before the microphone indicator is activated (CVE-2024-44207)
Vulnerability Patches
The following product-specific Vulnerability Patches have been made available in the latest update. If you are using an affected version, Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.
CVE-2024-44204
- Apple iPhone XS or later version: 18.0.1
- Apple iPad Pro (13-inch, 12.9-inch 3rd generation or later, 11-inch 1st generation or later) version: 18.0.1
- Apple iPad Air (3rd generation or later) version: 18.0.1
- Apple iPad 7th generation or later version: 18.0.1
- Apple iPad mini 5th generation or later version: 18.0.1
CVE-2024-44207
- Apple iPhone 16 version: 18.0.1
References
[1] About the security content of iOS 18.0.1 and iPadOS 18.0.1