PSA: Be Care to Upgrade Older Devices to iOS 15.7.4 to Address the Vulnerability That Is Being Actively Exploited
Alongside the updates for iOS 16.4 and iPadOS 16.4, Apple also released iOS 15.7.4 and iPadOS 15.7.4 for users of older devices that cannot be upgraded to the most recent software. These updates are available to download now. Those with an iPhone or iPad several generations old are strongly encouraged to update their software as soon as possible because the update contains critical security patches.
The release notes for Apple‘s latest security update address a lengthy list of vulnerabilities, one of which is a WebKit flaw widely known to be actively exploited. The following is taken from the Apple security support document:
The execution of arbitrary code can result from the processing of web content that was created maliciously. Apple is aware of a report suggesting this vulnerability may have been exploited somehow.
It is important to note that users of iOS 16 and iPadOS 16 do not need to be concerned about this exploit because it was fixed in a previous version of iOS 16.3.1. In addition to fixing other WebKit vulnerabilities that were not being actively exploited, this update also addresses security concerns with Calendar, Camera, Find My, and many other applications.
Both iOS 15.7.4 and iPadOS 15.7.4 are now available for download for all models of the iPhone 6s and iPhone 7, as well as for the first generation of the iPhone SE, the iPad Air 2, the fourth generation of the iPad mini, and the seventh generation of the iPod touch.