CERT-In (the Ministry of Electronics and Information Technology) reports several threats in Apple products that could grant an attacker access to the target system. This could allow the attacker to “elevate privileges, run arbitrary code, unveil sensitive data, and break security measures.”
According to the CERT-In, Apple products are vulnerable due to inappropriate security controls in the AppleMobileFileIntegrity. Other issues that are affecting Apple devices include shortcut components, out-of-bounds read issues, and inapt UI handling in the WebKit component.
In addition, there is a memory corruption problem in the ‘Media Library’ component and the ‘contacts’ component has a problem with inappropriate checks. The advisory says that a remote attacker can take advantage of these flaws by convincing the target/victim to open a specially created file or programme. CERT-In further advises users to implement proper software updates as recommended by Apple Security.
Software affected by these issues includes:
New Delhi: Midas, a wealthtech startup based in Istanbul, has successfully raised $45 million in…
New Delhi: LetsTransport, a leading truck aggregator has successfully secured $22 million in a latest…
New Delhi: Berlin-based SaaS company, finmid, has successfully secured €35M in the early stages of…
New Delhi: Salesforce is in talks to acquire Informatica, a cloud data management company. This…
New Delhi: Intel has recently introduced a new AI chip, the Gaudi 3, at the…
New Delhi: Sprinto, a software company specializing in automating risk management and compliance tasks, has…