Apple released a security update for Apple devices on February 13, 2023, regarding CVE-2023-23529. This vulnerability allows an attacker to remotely execute code without your knowledge. The latest security updates include the fix to this issue, and we encourage all users to update all Apple devices as soon as possible.
The update will, at a minimum, require a restart of Safari, and a complete restart of the affected device. Please save all your work before beginning the update process.
As a reminder, Berkeley Lab IT recommends that all users install BigFix and anti-virus software on all systems. BigFix can detect and remediate security issues such as the one discussed in this article. Berkeley Lab recently selected CrowdStrike, a next-generation antivirus product, to replace Sophos. BigFix and CrowdStrike are available for use on all Lab-issued Mac and Windows systems from software.lbl.gov.
| Apple Affected Devices | Fix |
| iPhone 8 and later | Update or upgrade to iOS 16.3.1 |
| All iPad Pro models | Update or upgrade to iPadOS 16.3.1 |
| iPad Air 3rd generation and later | |
| iPad 5th generation and later | |
| iPad mini 5th generation and later | |
| All Macs running macOS 13 Ventura | macOS Ventura:
|
| All Macs running macOS 11 BigSur and macOS 12 Monterey: |
|
| tvOS | Update to tvOS 16.3.2 |
| watchOS | Update to watchOS 9.3.1 |
in the bottom right or navigate to