Monday, April 20, 2026
CISA Exploit ListPatchVulnerability

Apple Patches 2 Zero-Day Flaws

Justin Erickson

by Justin Erickson

Apple has released critical updates to address two zero-day vulnerabilities – CVE-2024-44308 and CVE-2024-44309 – that are being actively exploited in attacks targeting Intel-based Macs and other Apple tech. The flaws found in WebKit and JavaScriptCore could allow attackers to execute arbitrary code and cross site scripting attacks. Apple urges users to update their devices immediately. These vulnerabilities highlight the importance of keeping devices up-to-date, particularly as attackers increasingly exploit unpatched systems. View the articles below to see if you are vulnerable.

Third-Party references:

Click the links below to learn more details. (Opens in a new tab/window.)

Bleeping Computer
SecurityWeek
PCMag
The Hacker News
Dark Reading
CVE-2024-44308
CVE-2024-44309