Apple security risk: Indian govt urges users running outdated iOS versions on iPhones & iPads to update
CERT-In alerts Apple device users about critical vulnerabilities in iOS and iPadOS. The flaws could grant attackers control over devices. Apply updates promptly to stay safe
Highlights
- CERT-In uncovers critical vulnerabilities in Apple iOS and iPadOS
- Apple iPhones and iPads running versions before 16.7.1 are affected
- Users are urged to install Apple's security updates promptly to mitigate risks
A high-severity warning about major flaws discovered in several Apple devices has been sent to Apple users by the Indian Computer Emergency Response Team (CERT-In). The seriousness of these security vulnerabilities is emphasised by this warning, which was mentioned in CERT-In's Vulnerability Note CIVN-2023-0303 on 14 October 2023.
India's cybersecurity efforts mostly rely on CERT-In, a department within the Ministry of Electronics and Information Technology of the Government of India. It keeps an eye on the digital environment constantly and publishes vulnerability advisories to alert the public to possible risks in cyberspace.
Buffer overflow problem
The vulnerability found in Apple's iOS and iPadOS is highlighted in a released CERT-In Vulnerability Note, which also highlights the seriousness of these dangers. The WebRTC component's buffer overflow problem and the kernel component's inadequate validation are the main causes of these vulnerabilities.
These flaws are particularly worrying since a remote attacker could take advantage of them by sending a carefully designed request to the targeted system. If the vulnerability was successful, the attacker would have rights and be able to effectively run whatever code they wanted on the hacked device.
In simpler terms, this means that a hacker could potentially take full control of the user's device, posing a substantial security risk.
Apple devices affected
A range of Apple products are affected by these flaws, including iPhones and iPads running iOS and iPadOS versions prior to 16.7.1. This covers popular gadgets including the iPhone 8 and beyond, all iPad Pro models, the third-generation iPad Air and later, the iPad 5th generation and later, and the fifth-generation iPad mini.
Staying safe
To protect against these vulnerabilities and maintain security, CERT-In strongly advises users to promptly apply the updates provided by Apple in their security patches.
Apple has already released the necessary fixes to address these vulnerabilities, and you can find the updates on Apple's official support website - support.apple.com/en-us/HT213972.
Recognising that Apple frequently provides patches and updates to address security risks is essential. By delaying the installation of these updates, hackers may be able to compromise your device.
Additionally, keeping your smartphone updated provides other advantages like enhanced performance, compatibility with new applications, and accessibility to new features. As a result, it is advised to maintain alertness and apply updates as soon as they become available.
