Apple has released an update to Magic Keyboard 2.0.6 that fixes a Bluetooth vulnerability
Apple has released a firmware update for the Magic Keyboard Bluetooth keyboard 2.0.6, according to the company’s blog. The update fixes a vulnerability that allowed physical access to the keyboard to obtain the Bluetooth pairing key.
Magic Keyboard Bluetooth firmware update 2.0.6 was released on January 9, 2024. It is available for:
- Magic Keyboard;
- Magic Keyboard (2021);
- Magic Keyboard with numeric keypad;
- Magic Keyboard with Touch ID;
- Magic Keyboard with Touch ID and numeric keypad.
The vulnerability, classified as CVE-2024-0230, could allow an attacker with physical access to an accessory to obtain its Bluetooth pairing key and monitor Bluetooth traffic. The session management issue was addressed with improved validations.
Keyboard updates are automatically delivered in the background while the Magic Keyboard is actively connected to a device running macOS, iOS, iPadOS, or tvOS.
You can check the firmware version of your Magic Keyboard in the Bluetooth settings on your Mac. To do this, go to System Preferences > Bluetooth, then click the Info button next to the keyboard. After installing this update, the firmware version will be 2.0.6.
ProIT previously reported that Microsoft’s January 2024 patch fixes 49 vulnerabilities and 12 RCE bugs.
We also wrote that hackers tried to steal 900 GB of Ubisoft data.