The Indian Computer Emergency Response Team (CERT-In) has warned users of multiple high severity vulnerabilities reported in Apple products, which could allow an intruder to carry out arbitrary code, escalation of privileges or bypass security restrictions on the targeted system.
These vulnerabilities exist in the Apple products due to a certificate validation issue in the security component, an error in the Webkit component used in its Safari Web browser and an issue in the Kernel. This will provide an attacker to exploit these vulnerabilities by sending specially crafted requests.
Further, CERT-In added the list of affected devices which included Apple iOS versions prior to 16.7 and iPadOS versions prior to 16.7, Apple macOS Moneterey versions before 12.7, Apple watchOS versions before 9.6.3, Apple Safari versions before 16.6.1, Apple macOS Ventura versions before 13.6 and Apple watchOS versions before 10.0.1.
Meanwhile, according to the Apple security page, keeping the software up to date is one of the most crucial steps a user can take to reinforce Apple product’s security.