Name of the Vulnerable Software and Affected Versions:

Apple Multiple Products versions prior to visionOS 2.3, iOS 18.3, iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3

Description:

A use-after-free issue was addressed with improved memory management. This issue may have been actively exploited against versions of iOS before iOS 17.2. A malicious application may be able to elevate privileges.

Recommendations:

visionOS versions prior to 2.3: Update to visionOS 2.3

iOS versions prior to 18.3: Update to iOS 18.3

iPadOS versions prior to 18.3: Update to iPadOS 18.3

macOS Sequoia versions prior to 15.3: Update to macOS Sequoia 15.3

watchOS versions prior to 11.3: Update to watchOS 11.3

tvOS versions prior to 18.3: Update to tvOS 18.3

As a temporary workaround, consider disabling the Core Media component until a patch is available. Restrict access to the vulnerable component to minimize the risk of exploitation. Avoid using the vulnerable function until the issue is resolved.