<p>Apple has fixed fresh vulnerabilities in iOS and macOS, including a zero-day flaw being actively exploited by hackers.</p>.<p>The zero-day flaw, known as CVE-2022-32917, allows a malicious app to run arbitrary code on an affected device with kernel privileges, Apple said in a security update.</p>.<p>Apple fixed the bug in updates for iOS 15.7 and iPadOS 15.7, macOS Monterey 12.6 and macOS Big Sur 11.7.</p>.<p>Apple warned that it is aware that this flaw "may have been actively exploited".</p>.<p><strong>Also Read | <a href="https://www.deccanherald.com/business/technology/apple-watchos-9-released-all-you-need-to-know-about-new-smartwearable-os-1144653.html">Apple watchOS 9 released: All you need to know about new smartwearable OS</a></strong></p>.<p>According to TechCrunch, this is the eighth zero-day vulnerability fixed by Apple this year.</p>.<p>In addition to these fixes, Apple also released a fix for a Safari browser flaw that could lead to address bar spoofing.</p>.<p>The security fixes were released along with iOS 16, which brings several security and privacy features, including support for Apple Passkeys and Lockdown Mode.</p>.<p>"Keeping your software up to date is one of the most important things you can do to maintain your Apple product's security," said the company.</p>.<p><strong>Also Read | <a href="https://www.deccanherald.com/business/technology/apples-iphone-14-series-to-be-more-environment-friendly-1144354.html">Apple's iPhone 14 series to be more environment-friendly</a></strong></p>.<p>After a software update is installed for iOS, iPadOS, tvOS, and watchOS, it cannot be downgraded to the previous version.</p>.<p>Last month, Apple released new software updates for iPhones, iPads, and Macs to fix two security vulnerabilities known by the tech giant to be actively exploited by attackers.</p>.<p>The two vulnerabilities were found in WebKit, the browser engine that powers Safari and other apps, and the kernel, essentially the operating system's core.</p>.<p>The tech giant had said the WebKit bug could be exploited if a vulnerable device accessed or processed "maliciously crafted web content (that) may lead to arbitrary code execution".</p>
<p>Apple has fixed fresh vulnerabilities in iOS and macOS, including a zero-day flaw being actively exploited by hackers.</p>.<p>The zero-day flaw, known as CVE-2022-32917, allows a malicious app to run arbitrary code on an affected device with kernel privileges, Apple said in a security update.</p>.<p>Apple fixed the bug in updates for iOS 15.7 and iPadOS 15.7, macOS Monterey 12.6 and macOS Big Sur 11.7.</p>.<p>Apple warned that it is aware that this flaw "may have been actively exploited".</p>.<p><strong>Also Read | <a href="https://www.deccanherald.com/business/technology/apple-watchos-9-released-all-you-need-to-know-about-new-smartwearable-os-1144653.html">Apple watchOS 9 released: All you need to know about new smartwearable OS</a></strong></p>.<p>According to TechCrunch, this is the eighth zero-day vulnerability fixed by Apple this year.</p>.<p>In addition to these fixes, Apple also released a fix for a Safari browser flaw that could lead to address bar spoofing.</p>.<p>The security fixes were released along with iOS 16, which brings several security and privacy features, including support for Apple Passkeys and Lockdown Mode.</p>.<p>"Keeping your software up to date is one of the most important things you can do to maintain your Apple product's security," said the company.</p>.<p><strong>Also Read | <a href="https://www.deccanherald.com/business/technology/apples-iphone-14-series-to-be-more-environment-friendly-1144354.html">Apple's iPhone 14 series to be more environment-friendly</a></strong></p>.<p>After a software update is installed for iOS, iPadOS, tvOS, and watchOS, it cannot be downgraded to the previous version.</p>.<p>Last month, Apple released new software updates for iPhones, iPads, and Macs to fix two security vulnerabilities known by the tech giant to be actively exploited by attackers.</p>.<p>The two vulnerabilities were found in WebKit, the browser engine that powers Safari and other apps, and the kernel, essentially the operating system's core.</p>.<p>The tech giant had said the WebKit bug could be exploited if a vulnerable device accessed or processed "maliciously crafted web content (that) may lead to arbitrary code execution".</p>