The Indian Computer Emergency Response Team (Cert-In) has issued an alert about several highly dangerous vulnerabilities affecting different versions of iOS, iPadOS, macOS and ChromeOS. It’s worth noting that Apple and Google have already rolled out updates for these flaws, and they’re required to alert Cert-In. Updates from Apple and Google usually mention fixed security flaws. It is recommended that users keep their devices updated to the latest versions of all software.
Why should Apple users worry?
If you are running any iOS or iPadOS prior to v15.6, Cert-In recommends that you immediately update to the latest version as these vulnerabilities were patched by Apple recently. Vulnerabilities can be exploited if a user visits malicious web content such as a page or website. It can easily bypass operating system security restrictions and in some cases, it can also cause denial of service attacks.
Similar exploits were also found in macOS Catalina, Big Sur, and Monterey. However, users are advised to update their systems to Catalina Security Update 2022-005 while Big Sur and Monterey users can patch it by updating to v11.6 and v12.5 respectively.
ChromeOS users are also affected
Those who use Google ChromeOS are also at risk. Users may run the risk of sensitive data leaking to hackers. Remote attackers can easily exploit these vulnerabilities by sending a specially crafted request to the target system. Similar to the vulnerabilities found in Apple devices, these vulnerabilities can be patched by updating to ChromeOS LTS channel version 96.0.4664.215.