Apple Takes Action: Critical iOS and iPadOS Updates Patch VoiceOver Password Flaw

| Updated on December 13, 2024
Apple devices

Apple released new updates a few days back that also launched a new password app to end your login nightmares. This application helps you keep track of all your passwords on your iPhone. However, there has been a significant security flaw with the update.

Apple now has urgently released critical updates for iOS and iPadOS to address these security issues, one of which flaws could reveal user’s saved passwords through its VoiceOver assistive technology. “A user’s saved passwords may be read aloud by VoiceOver,” said Apple.

As per Apple’s advisory, the matter has been resolved through the implementation of enhanced validation procedures. 

For those who rely on Apple’s VoiceOver screen reader, now is a good time to apply the latest update. So, users are encouraged to upgrade to iOS 18.0.1 and iPadOS 18.0.1 to protect their devices from possible security threats as soon as possible.

The affected devices are listed below:

  • iPhone XS and later
  • iPad Pro 13-inch
  • iPad Pro 12.9-inch 3rd generation and later
  • iPad Pro 11-inch 1st generation and later
  • iPad Air 3rd generation and later
  • iPad 7th generation and later
  • iPad Mini 5th generation and later

Security researcher Bistrit Daha has been credited with tracking down and reporting the flaw. The flaw has been tracked as CVE-2024-44204, and described as a logic problem in the new Passwords app impacting a slew of iPhones and iPads. 

“Audio messages in Messages may be able to capture a few seconds of audio before the microphone indicator is activated,” the iPhone maker noted.
The issue has been resolved with enhanced checks, and Apple credited Michael Jimenez, an anonymous researcher, for bringing it to their attention.

Comments Leave a Reply
Leave A Reply

Thanks for choosing to leave a comment. Please keep in mind that all comments are moderated according to our comment Policy.