October 4, 2023: Apple Releases Two Zero-Day Vulnerability Patches

Wednesday, October 4th, Apple released two Zero-Day vulnerability patches for iPhone and iPad users

What are the Vulnerabilities?

Apple has addressed the vulnerability by releasing iOS 17.0.3 and iPadOS 17.0.3 updates, which also cover CVE-2023-5217 - a buffer overflow vulnerability in vp8 encoding in the libvpx video codec library that could allow arbitrary code execution.

Who is Affected?

This affects owners of:

• iPhone XS and later
• iPad Pro 12.9 inch 2nd generation and later
• iPad Pro 10.5 inch
• iPad Pro 11 inch 1st generation and later
• iPad Air 3rd Generation and later
• iPad 6th generation and later
• iPad mini 5th generation and later 

What Should You Do?

• Apple recommends installing the latest patch. You can find the latest Software Update under Settings> General> Software Update.

Additional Information and Cybersecurity Guidance: 

• Read the more on the security updates here
• Familiarize your team with our Service Desk's contact information: 
  • Email: help@align.com 
  • (US) Phone: 1-855-482-5446
• Explore more information on Align Cybersecurity 

Do you have further other cybersecurity concerns? 

If so, we advise you to contact the Align Managed Services team at help@align.com or via phone at +1 855-IT-ALIGN (1-855-482-5446)

Thank you,

The Align Team

Account Management Team email: AccountMGMT@align.com
Align Managed Services Team email: help@align.com 
Cyber Team email - cyber@align.com
Alex Bazay, CISO - abazay@align.com
Dan Lyons, Sales and Business Development - dlyons@align.com
Phone: 1 855-IT-ALIGN (1-855-482-5446)