As per the warning, Apple products contain a number of security flaws that might let a hacker run arbitrary code, elevate their privileges, or get beyond security measures on the targeted machine.
On September 22, 2023, the Indian Computer Emergency Response Team, or CERT-In, issued a high-severity alert after identifying a number of vulnerabilities in Apple products, including the iPhone and watch. Apple products contain a number of security flaws that might let a hacker run arbitrary code, elevate their privileges, or get beyond security measures on the targeted machine.
What are the issues?
These flaws are present in Apple products as a result of problems with the Security component's certificate validation, the Kernel, and the WebKit component. By sending a carefully designed request, an attacker might take advantage of these vulnerabilities. By bypassing security measures on the targeted system or executing arbitrary code, these flaws could give an attacker elevated access rights.
Users who want to protect their personal data should update their devices right away to the most recent watchOS, tvOS, and macOS versions, according to the national nodal body that manages cybersecurity-related concerns across several releases. If the software problems with Apple watches, TVs, iPhones and MacBooks are not fixed, attackers may be able to access the devices.
On the official website i.e. cert-in.org.in , the appropriate updates to resolve this issue have also been provided by Apple.
List of affected softwares
- Apple macOS Monterey versions prior to 12.7
- Apple macOS Ventura versions prior to 13.6
- Apple watchOS versions prior to 9.6.3
- Apple watchOS versions prior to 10.0.1
- Apple iOS versions prior to 16.7 and iPadOS versions prior to 16.7
- Apple iOS versions prior to 17.0.1 and iPadOS versions prior to 17.0.1
- Apple Safari versions prior to 16.6.1
What is CERT-In?
The Ministry of Electronics and Information Technology of the Government of India provides the Indian Computer Emergency Response Team (CERT-In or ICERT). It is the central organization for handling risks to online safety like scamming and hacking. It improves the Indian Internet domain's security-related defense.
READ | Apple iPhone 15 available under Rs 32,000 after up to Rs 48,000 discount, check details
){kind=small}
){kind=small}
){kind=small}
){kind=spacer}
){kind=small}
){kind=small}
){kind=small}
){kind=small}
){kind=small}
){kind=small}
){kind=small}
){kind=small}
){kind=small}
){kind=small}
){kind=small}
){kind=small}
){kind=small}
 "CERT-In advisory, CERT-In apple warning, high severity warning for apple products, government warning for apple products, apple")
){kind=small}
){kind=small}
){kind=small}
){kind=small}
){kind=small}
)
){kind=small}
){kind=small}
)
)
)
)
)
){kind=small}
){kind=small}
){kind=small}
){kind=small}
){kind=small}