Indian government issues 'High' severity warning for Apple iPhone, iPad, Mac, Watch, Safari and other Apple products

apple

The Indian Computer Emergency Response Team (CERT-In) has issued a high-severity security warning for a wide range of Apple products, including iPhone, iPad, Mac, Apple Watch, Safari, tvOS, and Xcode. The advisory states that several vulnerabilities could allow attackers to execute arbitrary code, gain elevated privileges, access sensitive information, bypass security restrictions, or cause denial of service on affected devices.

According to CERT-In, the following Apple products running older software versions are impacted:

iOS and iPadOS versions prior to 26.1

(Affects iPhone 11 and later, iPad Pro 12.9-inch 3rd generation and later, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 8th generation and later, and iPad mini 5th generation and later)

macOS Sequoia versions prior to 15.1, macOS Ventura prior to 13.7.1, and macOS Monterey prior to 12.7.2

watchOS versions prior to 11.1

tvOS versions prior to 18.1

Safari versions prior to 17.6.1

visionOS versions prior to 2.1

Xcode versions prior to 15.4

The advisory notes that these vulnerabilities impact system components like Kernel, WebKit, CoreAnimation, Siri, and other modules used across Apple devices.

CERT-In has assigned a High severity rating due to the potential risks. If exploited, attackers may be able to:

Execute arbitrary code on the device

Gain elevated privileges

Access or disclose sensitive information

Manipulate or corrupt data

Bypass security restrictions

Cause denial of service or system crash

The advisory also references multiple CVEs, including CVE-2025-43442, CVE-2025-43455, CVE-2025-43462, CVE-2025-43449, CVE-2025-43379, and several others affecting different system layers.

CERT-In recommends that users update their devices to the latest available software versions released by Apple. The patches address the reported vulnerabilities and include security fixes across iOS, iPadOS, macOS, watchOS, tvOS, visionOS, Safari, and Xcode.

Users are also advised to enable automatic updates, download apps only from trusted sources, and avoid clicking unknown links to minimize exposure to potential attacks.