“Apple has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected device,” the notice, dated March 28, reads. “CISA encourages users and administrators to review the following advisories and apply the necessary updates.” …The iOS 16.4 upgrade also fixes two flaws in the iPhone operating systems, tracked as CVE-2023-27969 and CVE-2023-27933 that could allow a malicious actor to execute code without the user knowing. Meanwhile, another flaw, CVE-2023-28178, could allow an attacker to bypass the user’s Privacy preferences, says Apple via its support page.
