The Centre has issued a ‘high severity’ warning to Apple users, cautioning them about multiple vulnerabilities in its products. The Indian Computer Emergency Response Team, which functions under the ministry of electronics and information technology, has cautioned against multiple vulnerabilities which could allow an attacker to execute an arbitrary code, escalation of privileges or bypass security restrictions on the target system. “These vulnerabilities exist in Apple products due to certificate validation issue in the Security component, an issue in the Kernel and error in the Webkit component. An attacker could exploit these vulnerabilities by sending specially crafted request”, the CERT-IN statement said.
The software affected include: 1. Apple macOS Moneterey versions prior to 12.72. Apple macOS Ventura versions prior to 13.63. Apple watchOS versions prior to 9.6.34. Apple watchOS versions prior to 10.0.15. Apple iOS versions prior to 16.7 and iPadOS versions prior to 16.76. Apple iOS versions prior to 17.0.1 and iPadOS versions prior to 17.0.17. Apple Safari versions prior to 16.6.1The government has recommended users to install updates as recommended by Apple.