New Delhi: The Indian government has raised alarms about significant security vulnerabilities affecting iPhones, iPads, and other Apple products, warning that these flaws could enable attackers to access sensitive information and execute malicious activities.
In a Friday advisory, the Indian Computer Emergency Response Team (CERT-In), the Centre’s cybersecurity advisory body, outlined “multiple vulnerabilities” present in a range of Apple devices.
According to the advisory, these security issues could potentially allow attackers to execute arbitrary code, bypass security restrictions, cause denial of service (DoS) attacks, and conduct spoofing attacks.
Security Flaws in Certain Apple Devices
Recent vulnerabilities in select Apple devices could potentially allow attackers to access sensitive information, manipulate security settings, and use the devices maliciously. CERT-In recommends that users update to the latest Apple software to mitigate these risks.
Affected Software Versions
These vulnerabilities impact various Apple software versions, including:
- Safari: Versions prior to 17.6
- iOS and iPadOS: Versions prior to 17.6 and 16.7.9
- macOS Sonoma: Versions prior to 14.6
- macOS Ventura: Versions prior to 13.6.8
- macOS Monterey: Versions prior to 12.7.6
- watchOS: Versions prior to 10.6
- tvOS: Versions prior to 17.6
- visionOS: Versions prior to 1.3
Recommended Actions
In response to the identified risks, Apple has released security updates last week and has made the latest versions of their software available on their official portal. The government has urged all users to apply these updates to protect their devices from potential threats.
Previously, the government issued a similar high-risk warning concerning critical vulnerabilities that could allow remote code execution across various Apple devices, including iPhones, iPads, MacBooks, and VisionPro headsets.
