On Tuesday, January 26, 2021 Apple support released a new update for iPhone and iPad with security fixes for three vulnerabilities that may have been actively exploited. The latest version of iOS & iPadOS 14.4 fixes the security bugs that may be under active attack by hackers.
There is not much information known at this time as Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Additional details are said to be available soon.
The security vulnerabilities have been identified as follows:
CVE-2021-1782: A malicious application may be able to elevate privileges.
CVE-2021-1871 & CVE-2021-1870: A remote attacker may be able to cause arbitrary code execution.
The three vulnerabilities mentioned above could be used to gain access to your personal or corporate data, and it is not known who is being targeted, and who might have already become a victim. Apple advises to keep your software up to date to maintain product security. If you have not already upgraded to the latest version of iOS and iPad OS (14.4) here is a link to the update instructions on Apple's support page.
If you have questions about security vulnerabilities or would like more information on our managed patching services, connect with Systems Engineering at firstname.lastname@example.org, or 888.624.6737. Customers, please reach out to your Account Manager with any questions.