Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Privacy

Apple iOS 18.0.1 Patches Password Exposure and Audio Snippet Bugs

According to a barebones Apple advisory, the new iOS 18.0.1 fixes two bugs that expose passwords and audio snippets to malicious hackers.

iPhone security

Apple has pushed out a security-themed iOS and iPadOS update to fix a pair of flaws in the mobile operating systems.

According to a barebones Apple advisory, the new iOS 18.0.1 and iPadOS 18.0.1 fixes vulnerabilities that expose passwords and audio snippets to malicious hackers.

One issue, tracked as CVE-2024-44207, allowed audio messages in Messages to capture brief snippets of audio before the microphone indicator was activated. 

The second bug, CVE-2024-44204, could potentially enable VoiceOver to read aloud a user’s saved passwords due to a logic issue.

Apple said the mobile OS point-updates include improved validation and checks.

There are no indications that any of the two bugs were exploited prior to the availability of patches.

The update also fixes issues where Touch screen may be temporarily unresponsive, camera freezes, the Messages app unexpectedly crashing, and undocumented performance issues.

Apple shipped iOS 18 less than a month ago with fixes for at least 33 security vulnerabilities that expose iPhones and iPads to an assortment of malicious hacker attacks.

Advertisement. Scroll to continue reading.

Related: Apple Patches Major Security Flaws With iOS 18 Refresh

Related: Apple Suddenly Drops NSO Group Spyware Lawsuit

Related: Apple Warns of Newly Exploited iOS 17 Kernel Zero-Day

Related: Apple Blunts Zero-Day Attacks With iOS 17.4 Update

Written By

Ryan Naraine is Editor-at-Large at SecurityWeek and host of the popular Security Conversations podcast series. He is a security community engagement expert who has built programs at major global brands, including Intel Corp., Bishop Fox and GReAT. Ryan is a founding-director of the Security Tinkerers non-profit, an advisor to early-stage entrepreneurs, and a regular speaker at security conferences around the world.

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Don’t miss this Live Attack demonstration to learn how hackers operate and gain the knowledge to strengthen your defenses.

Register

Join us as we share best practices for uncovering risks and determining next steps when vetting external resources, implementing solutions, and procuring post-installation support.

Register

People on the Move

Mike Byron has been named Chief Financial Officer (CFO) at Exabeam.

Ex-GitHub chief technology officer Mike Hanley has joined GM as CISO.

Network security and compliance assurance firm Titania has appointed Victoria Dimmick as CEO.

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.