2024-02-01
228
1 minutes.


Apple fixes zero-day vulnerability in Vision Pro after suspected hacker attack

One of the first security patches for the Apple Vision Pro headset was an update that was aimed at fixing a zero-day vulnerability.

Security patch for Vision Pro

Fixing a vulnerability in WebKit

Apple has released an update to visionOS 1.0.2, which is designed to fix a vulnerability in the WebKit engine, which is responsible for the operation of the Safari browser and other web applications. The company said the flaw, if exploited, could allow malicious code to run on a vulnerable device.

Apple fixes zero day vulnerability in Vision Pro after suspected hacker attack

Protection against hacker attacks

A similar vulnerability with CVE-2024-23222 has already been fixed Apple last week released iOS 17.3 for iPhone, iPad, Mac and Apple TV, which also run WebKit.

Apple fixes zero day vulnerability in Vision Pro after suspected hacker attack

Attackers often target weaknesses in WebKit to gain access to a device's operating system and steal users' personal data. Engine errors can be exploited, for example, when a user visits a malicious website in their browser or application.

Expectations for the Vision Pro

US stores will soon offer the Vision Pro headset for $3,500, with an additional $149 charge for prescription lenses.

Apple fixes zero day vulnerability in Vision Pro after suspected hacker attack

Software issues

Apple stated that the Vision Pro headset will support more than a million apps including Disney, TikTok, Amazon, Paramount and others. However, many of these apps already exist and are designed for the iPad. However, they will all be available on the Vision Pro App Store unless the developers opt out, as Netflix, Spotify and YouTube plan to do.

Source: Techcrunch

Answers to questions

When did Apple release the first security patch for the Vision Pro headset?

Apple released the first security patch for the Vision Pro headset a day after the first journalistic reviews were published.

What vulnerability did Apple fix with the visionOS 1.0.2 update?

Apple has fixed a vulnerability in WebKit, the engine used by Safari and other web programs, with the visionOS 1.0.2 update.

Which devices and operating systems are supported by the iOS 17.3 update?

The iOS 17.3 update is rolling out to iPhone, iPad, Mac and Apple TV, all of which rely on WebKit.

Additional information

  • Vision Pro: This is Apple's mixed reality headset, available in US stores starting February 2nd.
  • visionOS 1.0.2: The operating system running on the Vision Pro headset, with an update to fix a vulnerability in WebKit.
  • WebKit: The engine that runs Safari and other web programs, patching it to help prevent your device from being hacked.
  • CVE-2024-23222: Official designation of the vulnerability fixed by Apple with the iOS 17.3 update.

Links


Copywriter Elbuz
Brief description
A day after the first reviews of Apple's headset were published, the company released a security patch for the Vision Pro to fix a zero-day vulnerability that may have been exploited by hackers.
Article Target
Inform users about the vulnerability and security patch
Style
Informational
Target audience
Apple headset users and those interested in security


Contents:



Save a link to this article

Discussion of the topic – Apple fixes zero-day vulnerability in Vision Pro after suspected hacker attack


A day after the first reviews of Apple's headset were published, the company released a security patch for the Vision Pro to fix a zero-day vulnerability that may have been exploited by hackers.


There are no reviews for this product.


Captcha


Next