A recent security advisory issued by the Indian Computer Emergency Response Team (CERT-In) has sounded the alarm for users of Apple devices, including iPhones, MacBooks, iPads, and Vision Pro headsets. The warning underscores a grave concern regarding a critical vulnerability linked to “remote code execution” in various Apple products.The vulnerability spans a spectrum of Apple software and hardware, encompassing older versions of Apple Safari, macOS Ventura, macOS Sonoma, visionOS, iOS, and iPadOS. Exploiting an out-of-bounds write issue in WebRTC and CoreMedia, malicious actors can execute arbitrary code on targeted systems, posing a significant threat to user data and device integrity.To mitigate this risk, users are strongly advised to update their devices to the latest software versions that contain essential security patches. Additionally, implementing measures such as avoiding unsecured Wi-Fi networks, enabling Two-Factor Authentication (2FA), downloading only from trusted sources, and maintaining regular backups can enhance overall cybersecurity posture and safeguard against potential exploits.
