Mumbai, August 4: The Indian Computer Emergency Team (CERT-In) under MeitY has identified several vulnerabilities in Apple's products and issued users a "High Risk" warning. The government-run advisory has alerted users against spoofing and said that the software vulnerabilities exist in iPhones, iPads and several other products. CERT-In warned about the vulnerabilities and marked it "high", cautioning the users and the tech giant to take action.

CERT-In said that multiple vulnerabilities were reported in Apple, which could allow attackers to gain access to users' sensitive information. The advisory said that it could also allow hackers to execute arbitrary code, perform spoofing attacks, bypass security restrictions, and cause DoS (denial of service). Mumbai Police Recovers INR 100 Crore Belonging to Victims of Cyber Fraudsters After 35,918 Complaints Were Lodged.

According to many reports, the advisory flagged these vulnerabilities in iOS, iPadOS, macOS Sonoma, macOS Ventura, macOS Monterey, watchOS, visionOS, tvOS and Safar browser. Here is the list of versions affected 

  • iOS/iPadOS versions before 17.6 and 16.7.9

  • macOS Sonoma versions before 14.6

  • macOS Ventura versions before 13.6.8

  • macOS Monterey versions before 12.7.6

  • watchOS versions before 10.6,

  • tvOS versions before 17.6,

  • visionOS versions before 1.3,

  • Safari versions before  17.6

CERT-In has advised people to install the required updates provided by Apple for this software. These "High-Risk" software vulnerabilities exist in the iPhone, iPad, Mac computers, Apple Watches, Apple TVs, Vision Pro headsets, and Safari browser. The advisory said that it identified a critical vulnerability that could allow attackers to perform "remote code execution" and access users' information. 

These Apple vulnerabilities could allow attackers to act as "logged-in" users of the products and access various information. The attackers could also operate the device and install apps, view details, change settings and apps, delete users' data, and create new accounts with administrative rights. ‘Microsoft Fired Me in 2005 and It Made Me Confront My Fears, Re-evaluate My Goals and Find More Aligned Path’: Scintillate CEO Kapil Kulshreshtha.

To disappoint attackers, users can use a strong password and avoid interacting with websites that look suspicious or can be potentially malicious. They can also avoid clicking links or opening files that appear misleading or malicious. 

(The above story first appeared on LatestLY on Aug 04, 2024 10:48 AM IST. For more news and updates on politics, world, sports, entertainment and lifestyle, log on to our website latestly.com).