The vulnerabilities are in the Webkit rendering engine and affected iPhone, macOS, iPads, iPods and Apple Watch devices.
In a release that it published this Monday, Apple released a security update in which it repairs a total of four vulnerabilities that, according to the company itself, “is aware of reports about the possibility that they are being actively exploited.”
All vulnerabilities are present in WebKit, the browser rendering engine used by Safari, Mail, the App Store, and all web browsers on macOS and iOS, as well as other applications. In this sense, the devices for which security updates were released are iPhone, macOS, iPod, iPad and Apple Watch.
Updates are the iOS 12.53, iOS 14.5.1 and iPadOS 14.5.1, macOS Big Sur 11.3.1 Y watchOS 7.4.1. While the vulnerabilities are CVE-2021-30666, CVE-2021-30665, CVE-2021-30663 and CVE-2021-30661. In all cases, the vulnerabilities could allow the execution of arbitrary code by sending malicious web content.
Although Apple did not give details of the possible attacks, considering that there are reports that indicate that they are being exploited by attackers, it is recommended that users update their devices as soon as possible.