Government issues security warning for iPhone, Mac and other Apple products: All the details

iPhone

Indian Computer Emergency Response Team (CERT-In) has issued a high-severity vulnerability note (CIVN-2025-0071) warning users of Apple devices about multiple security flaws across several software platforms.

The advisory urges users and organisations to update their systems immediately to prevent potential exploitation.

The vulnerabilities affect a wide range of Apple software, including Safari versions prior to 18.4, Xcode versions prior to 16.3, and operating systems across multiple generations. These include iOS and iPadOS versions before 18.4, 17.7.6, 16.7.11, and 15.8.4, as well as macOS Sequoia before 15.4, macOS Sonoma before 14.7.5, and macOS Ventura before 13.7.5. Other impacted platforms include tvOS versions before 18.4 and visionOS versions before 2.4.

The warning applies to all users operating Apple devices on the affected software versions, especially enterprises relying on macOS, iOS, and iPadOS for business operations.

According to CERT-In, the flaws stem from multiple underlying issues such as type confusion, use-after-free errors, out-of-bounds reads and writes, input validation flaws, improper file parsing, buffer overflows, and path handling weaknesses. These could allow attackers to bypass security controls, execute arbitrary code, access sensitive data, or cause denial of service (DoS) conditions.

The vulnerabilities pose a high risk to both individual and organizational users of Apple’s ecosystem. If exploited, attackers could gain unauthorized access to personal or enterprise data, elevate privileges within a system, and manipulate information or carry out spoofing attacks.

CERT-In has advised users to install the latest security updates issued by Apple. These patches address the reported vulnerabilities and mitigate the risk of potential attacks. Users can refer to Apple’s official security updates page for detailed patch notes and installation instructions.