CERT-in Issues Advisory Related to Vulnerabilities in Apple Devices
In an advisory dated January 28, CERT-In states that a number of vulnerabilities have been reported in Apple merchandise. This might permit the attacker to entry delicate data, execute arbitrary code, bypass safety restrictions, trigger denial of service (DoS) circumstances, bypass authentication, acquire elevated privileges, information manipulation and carry out spoofing assaults on the focused system.
CERT-In’s advisory outlines the affected Apple merchandise — Apple macOS Sequoia variations earlier than 15.3, macOS Sonoma variations earlier than 14.7.3, macOS Ventura variations earlier than 13.7.3, and iPadOS variations earlier than 17.7.4.
The iOS, tvOS and iPadOS variations previous to 18.3, visionOS variations previous to 2.3, Safari Versions earlier than 18.3 and watchOS variations previous to 11.3 are additionally stated to be affected by these vulnerabilities. The vulnerabilities are rated as “excessive danger”.
The authorities company states that the recognized vulnerabilities stem from null pointer dereference, sort confusion error, use after free error, out-of-bounds learn, out-of-bounds write, dealing with of recordsdata, parsing a file, enter validation, user-sensitive information, and extra. The nodal company notes that one of many reported vulnerabilities — CVE-2025-24085 — is a essential one and is actively exploited. It impacts Apple gadgets operating older variations of iOS, iPadOS, and macOS.
The advisory recommends customers replace their Apple gadgets to the newest variations of software program to mitigate the dangers. The authorities advisory comes a number of days after Apple launched its newest software program replace for iPhone, iPad and Mac customers.
Â
