Apple Patches Vision Pro Security Bug Ahead of Launch

The tech giant has released visionOS 1.0.2 to fix a WebKit vulnerability that may have been exploited, with the Vision Pro set to be available from Friday.

• Apple has released a security patch, visionOS 1.0.2, for its upcoming Vision Pro mixed reality headset to fix a vulnerability in WebKit that may have been exploited by hackers.
• The vulnerability, officially tracked as CVE-2024-23222, allowed malicious code to run on an affected device and was previously patched in iOS 17.3 for iPhones, iPads, Macs and Apple TV.
• It's unclear if the vulnerability was specifically exploited on the Vision Pro, and Apple has not disclosed who was exploiting the vulnerability or for what reason.
• Vision Pro is expected to be available starting Friday, and customers are advised to update to visionOS 1.0.2 upon receiving their device.
• Apple has previously rolled out several patches for WebKit bugs, which are often targeted by malicious actors such as spyware makers.

3 Articles

TechCrunch 9to5Mac 9to5Mac