Indian Government warns iPhone 16 Pro Users over Major Security Risk
November 29, 2024 21:02(Image source from: x.com/theapplehub)
If you have a new iPhone 16 Pro model or an older MacBook, the Indian government has issued a serious security warning that you should be aware of. India's Computer Emergency Response Team (CERT-In) had issued a high-intensity alert in November this year. This security issue is a big problem because it affects important parts of Apple devices such as iPhone, iPad and Mac. Here we tell you about the security flaw, the devices affected, and what you can do to protect your iPhone from these risks. The biggest concern with these vulnerabilities is that MacBook users with Intel-based models may have already been exploited. This means that in their case this measure is very urgent.
Arbitrary Code Execution Vulnerability: This vulnerability exists in JavaScriptCore, which Apple's Safari browser and other applications use to process JavaScript. An attacker could exploit this issue by sending maliciously crafted web content to an affected device, potentially executing arbitrary code.
Cross-site scripting vulnerability: This vulnerability exists in WebKit, the engine that powers Safari and web content on Apple devices. An attacker could exploit this issue by sending maliciously crafted web content to initiate cross-site scripting (XSS) on an affected device. The zero-day nature of Mac security problems can be addressed with emergency security updates that Apple has released in recent days.
The details of the affected devices are as follows:
– iOS and iPadOS versions before 18.1.1
– iOS and iPadOS versions before 17.7.2
– For macOS Sequoia versions before 15.1.1
- VisionOS versions before 2.1.1
– For Safari versions before 18.1.1
If your iPhone, iPad, MacBook or Safari browser is running one of the special versions, we recommend that you install the emergency patch now. To do this, go to Settings – General – Software Update and install the version available for your device.