Cert-In Highlights Multiple Vulnerabilities in Apple iPhones, iPads

The Indian Computer Emergency Response Team (CERT-In) has reported multiple vulnerabilities in Apple iOS and iPadOS.

The vulnerabilities affect Apple iOS 16.1, Apple iOS versions previous to 16.0.3, and iPadOS versions prior to 16. As per the communication, it could allow a remote tracker to access private data, run arbitrary code, spoof the interface address, or cause a denial of service on the targeted devices.

The cyber security watchdog said that Apple iPhone 8 and after, iPad Pro Call models, iPad Air 3rd generation and later, iPad 5th generation and later, and iPad mini 5th generation and later are among the list of afflicted devices.

As per the report, the severity rating of the vulnerability is high due to inadequate security controls in the AppleMobileFileIntegrity component among a slew of other factors.

The watchdog also reported multiple vulnerabilities in Apple Safari versions prior to 16.1. The vulnerabilities could allow an attacker to spoof URLs, disclose sensitive information or execute arbitrary code on the target system. This vulnerability too was rated as one with high severity.

Originally published at https://cxotv.techplusmedia.com on October 27, 2022.