The Indian Computer Emergency Response Team (CERT-In) has raised an alarm for users of Apple’s iPhones, MacBooks, iPads, and Vision Pro headsets, issuing a “high-risk” warning. The advisory focuses on a critical vulnerability linked to “remote code execution” across various Apple products.
This security flaw affects a wide range of Apple software and hardware, encompassing older versions of Apple Safari, macOS Ventura, macOS Sonoma, visionOS, iOS, and iPadOS. The vulnerability enables remote attackers to execute arbitrary code on targeted systems. Leveraging an out-of-bounds write issue in WebRTC and CoreMedia, attackers can compromise devices remotely, posing a significant threat to users’ security and privacy.