—–BEGIN PGP SIGNED MESSAGE—–

Hash: SHA256

Multiple Vulnerabilities in Apple Products 

Indian – Computer Emergency Response Team (https://www.cert-in.org.in)

Severity Rating: High

Software Affected

Apple iOS and iPadOS versions prior to 26.1

Apple iOS and iPadOS versions prior to 18.7.2

Apple macOS Tahoe versions prior to 26.1

Apple macOS Sequoia versions prior to 15.7.2

Apple macOS Sonoma versions prior to 14.8.2

Apple tvOS versions prior to 26.1

Apple watchOS versions prior to 26.1

Apple visionOS versions prior to 26.1

Apple Safari versions prior to 26.1

Apple Xcode versions prior to 26.1

Overview

Multiple vulnerabilities have been reported in Apple Products which could allow an attacker to execute arbitrary code, gain elevated privileges, disclose sensitive information, bypass security restrictions or can cause denial of service condition on the targeted system.

Target Audience:

Individuals and organizational users using Apple products

Risk Assessment:

High risk of unauthorized access to sensitive data, service disruptions, and complete system compromise. 

Impact Assessment:

Potential for data theft, propagation of malware, and system crash.

Description

Multiple vulnerabilities have been reported in Apple products.

Solution

Apply appropriate security updates as mentioned in the Apple Security Updates.  

Vendor Information

Apple

https://support.apple.com/en-us/125632

https://support.apple.com/en-us/125633

https://support.apple.com/en-us/125634

https://support.apple.com/en-us/125635

https://support.apple.com/en-us/125636

https://support.apple.com/en-us/125637

https://support.apple.com/en-us/125639

https://support.apple.com/en-us/125638

https://support.apple.com/en-us/125640

https://support.apple.com/en-us/125641

CVE Name

For the complete list of CVEs.

https://support.apple.com/en-us/100100

– —

Thanks and Regards,

CERT-In

Incident Response Help Desk

e-mail: incident@cert-in.org.in

Phone: +91-11-22902657

Toll Free Number: 1800-11-4949

Toll Free Fax : 1800-11-6969

Web: http://www.cert-in.org.in

PGP Fingerprint: A768 083E 4475 5725 B81A A379 2156 C0C0 B620 D0B4

PGP Key information:

https://www.cert-in.org.in/s2cMainServlet?pageid=CONTACTUS

Postal address:

Indian Computer Emergency Response Team (CERT-In)

Ministry of Electronics and Information Technology

Government of India

Electronics Niketan

6, C.G.O. Complex

New Delhi-110 003

—–BEGIN PGP SIGNATURE—–

iQIzBAEBCAAdFiEE6r4Iam/Ey0c/KakL3jCgcSdcys8FAmkTLwEACgkQ3jCgcSdc

ys/rgw/7BxihzNU379Dp08bQwSgbHF2JW2S8GSNZCIZ9jqLdQ6RDW++nbBTm2Dzh

B3egnPiL8LaDTVoIlBjvcD1So1+wEbRscOvAalzjYKrh37vm5u5cPI2I2lw7B5za

WqqG+VwNArl4tSaFt8jSgs082oRHa5UN92slyHro8tU84QR6c59D5cfybz2Mq7l4

6Ckupdglnw/AKsfDNRiZQhE1BDBXYVaBL+za7ftPDndIs0WyluClnX7bS1OwqCei

8uHKtKd3KRkEZ0mWHXmKE6nrHvDSnxvXMVR91C8Yk3Id0f1aVPiYO06p+HOnv005

sxIDKisUj2hDnQG0IjUH1x9Yxdg61r6wX991d5A0HHKPPlnLJcpARZvT4vAR36jh

tpZxibpz2bQ38wMmN207aoBo4VMG2i5cbrdMI8wsBIqeveF3/klXcWu8D7kkS7bd

FSRmVwXXRtgjtWqhiNFJJ/YuqTZ0N73xDdl4pod8UP58MNR/6P2T6hy9bhrY9/Aj

5j8ipwi3L/vMG4je82RpQ4GaPi5IKGSAAfcOTKyv8cCGI5HvIevBkKrojvcDWZFi

yYsdemu4Kosdtun9EKokgxPzadyiTG2evjaeHqkhTnFObH6IVvhfb9JT4t/e1fI9

MiQxiUNQRQKKBb4UXzd8uEMVeRnV/raRPAsobwZYkiux2NyYEKQ=

=bDMZ

—–END PGP SIGNATURE—–