CERT-in flags high-risk security flaws in Apple, Samsung devices; iPhone, iPad vulnerable to exploit

Apple, Samsung and other smartphone manufacturers release updates and security patches on time to keep their devices robust against various threats and vulnerabilities. Despite regular fixes, both iOS and Android platforms can fall victim to malicious exploits. The government has issued high-risk security alerts for users of both Apple and Samsung devices. The Indian Computer Emergency Response Team (CERT-In) has flagged serious vulnerabilities in Apple and Samsung products this week. Reported vulnerabilities could put users’ sensitive information at risk.

in one consultant CERT-In released on December 15 reported several vulnerabilities in Apple products. These vulnerabilities affect the iPhone, iPad, Mac, Apple TV, Apple Watch, and the Safari web browser. According to CERT-In, iOS and iPadOS versions before 17.2 and 16.7.3, macOS Sonoma before version 14.2, macOS Ventura before version 13.6.3, macOS Monterey before version 12.7.2, tvOS before version 17.2, watchOS Versions prior to 10.2, and Safari versions prior to 17.2 all suffer from high-risk vulnerabilities.

“Multiple vulnerabilities have been reported in Apple products that could allow an attacker to access sensitive information, execute arbitrary code, bypass security restrictions, cause denial of service (DoS) conditions, bypass authentication, gain elevated privileges, etc. And may allow spoofing attacks to be carried out on targets. System,” CERT-In said in the advisory.

The nodal security agency under the Ministry of Electronics and Information Technology (MeitY) has warned that the two reported vulnerabilities, CVE-2023-42916 and CVE-2023-42917, can be exploited by malicious entities and asked users to update the It has been requested to do so. For latest OS patches.

Additionally, CERT-In also released a vulnerability note for Samsung products on December 13, flagging Android versions 11, 12, 13, and 14 on Samsung devices as being at high risk of threats that could allow attackers to bypass security restrictions. could allow access to sensitive user information. And run arbitrary code on the target system.

The vulnerabilities in Samsung devices can be exploited to access the device SIM PIN and send broadcasts with elevated privileges, among other actions. To avoid falling prey to these threats, Samsung users can get the latest OS updates with the latest security patches on their devices.

Last month, CERT-In warned about several security vulnerabilities affecting older iPhone and iPad models. In its vulnerability note CIVN-2023-0303, released in early October, CERT-In had flagged the security flaw, which affected older versions of iOS and iPadOS. According to the agency, the vulnerabilities affected OS versions prior to iOS 16.7.1 and iPadOS 16.7.1.

Affiliate links may be automatically generated – see our ethics statement for details.

Leave a comment