The Indian Computer Emergency Response Team (CERT-In) has alerted Apple users about several vulnerabilities affecting iPads, Macs, and other devices. This warning was issued this week following the discovery of multiple security flaws within the operating system that supports Apple’s range of products, including tablets and smartphones. If these vulnerabilities are exploited, they could enable attackers to gain access to sensitive data stored on the affected devices.
CERT-In Alerts Users to Security Flaws in Apple Products
CERT-In’s advisory, dated January 28, outlines the multiple vulnerabilities identified in Apple devices, which can potentially allow attackers to access confidential information, execute arbitrary code, circumvent security measures, induce denial of service (DoS) conditions, bypass authentication, escalate privileges, manipulate data, and carry out spoofing attacks on the compromised systems.
The advisory specifies the Apple products impacted by these vulnerabilities, which include macOS Sequoia versions prior to 15.3, macOS Sonoma versions prior to 14.7.3, macOS Ventura versions prior to 13.7.3, and iPadOS versions prior to 17.7.4.
Additionally, iOS, tvOS, and iPadOS versions earlier than 18.3, visionOS versions below 2.3, Safari versions prior to 18.3, and watchOS versions before 11.3 are also at risk. The vulnerabilities have been classified with a “high risk” rating.
CERT-In indicates that these vulnerabilities arise from issues such as null pointer dereferencing, type confusion errors, use-after-free errors, out-of-bounds reads and writes, file handling errors, file parsing issues, and inadequate input validation, among others. Notably, one identified vulnerability, CVE-2025-24085, is classified as critical and is currently being exploited in the wild. This vulnerability affects Apple devices operating on outdated versions of iOS, iPadOS, and macOS.
The advisory urged users to update their Apple devices to the latest software versions to reduce potential security risks. This advisory was issued shortly after Apple announced its latest software update for iPhone, iPad, and Mac users.
