The Safari update is available for both macOS Monterey and macOS Ventura. If you have a Mac running a release older than macOS Sonoma, either because your Mac is too old or because you haven't got around to updating, Apple also released Safari 17.1.2 as an independent update with the same fixes. Apple said in a support article, 'Apple is aware of a report that this issue may have been exploited against versions of iOS before iOS 16.7.1.' They were both discovered by Clément Lecigne, working for Google's Threat Analysis Group. Importantly, both security vulnerabilities are likely already being used by malicious web pages. The exact details of the exploits aren't public yet to protect users. The exploits are identified as CVE-2023-42916 and CVE-2023-42917, and both vulnerabilities allow malicious web pages to run arbitrary code on your device. The updates fix two security exploits in WebKit, the browser engine used in Safari and other applications that embed web content (which includes all third-party browsers on iOS and iPadOS). Apple has released macOS Sonoma 14.1.2 for Mac computers, iOS 17.1.2 for iPhone products, and iPadOS 17.1.2 for iPad devices.
