close
close

India’s CERT-IN flags ‘multiple vulnerabilities’ in software of Apple devices including iPhone, VisionPro headset, Mac, iPad and Apple Watch

Posted on by darion

India's CERT-IN flags 'multiple vulnerabilities' in Apple software products (file)

India’s CERT-IN flags ‘multiple vulnerabilities’ in Apple software products (File) | Image source: AP

The Computer Emergency Response Team of India, or CERT-IN, in an August 2 advisory highlighted multiple security vulnerabilities in Apple software products and gave them a severity rating of “High.”

“Multiple vulnerabilities have been reported in Apple products that could allow attackers to access confidential information, execute arbitrary code, bypass security restrictions, cause a denial of service (DOS), and conduct impersonation attacks on the targeted system,” CERT-IN said in a statement.

According to the agency, the following Apple software offerings were affected:

Apple iOS versions prior to 17.6 and iPadOS versions prior to 17.6

Apple iOS versions earlier than 16.7.9 and iPadOS versions earlier than 16.7.9

Apple macOS Sonoma versions earlier than 14.6 Apple macOS Ventura versions earlier than 13.6.8

Apple macOS Monterey versions older than 12.7.6

Apple watchOS versions older than 10.6

Apple tvOS versions older than 17.6

Apple VisionOS versions older than 1.3

Apple Safari versions older than 17.6

(Discover the complexity of our digital world on The Interface podcast, where business leaders and academics share insights that shape tomorrow’s innovation. The Interface is also available on YouTube, Apple Podcasts, and Spotify.)

Based on the information provided, Apple device users with Vision Pro headsets, iPhones, iPads, Mac products, smartwatches, streaming service subscriptions, and Safari browsers should check what software/OS versions they are using and whether they have been flagged as vulnerable.

According to the agency, Apple has released security updates that users should check to update their software and get better security. These updates and release notes can be found here.

According to Apple’s website, a number of recent updates and responses to security threats were released on July 29.

“To protect our customers, Apple does not disclose, discuss, or confirm security issues until an investigation is completed and a fix or update is available,” Apple says on its website.

Device users are advised to update their software frequently or configure their devices to do so automatically so that any vulnerabilities and threats can be patched before an attack occurs.

When performing major updates, it is best to connect to the internet via Wi-Fi and have your phone charged.