ADVISORY!
TLP : CLEAR
Date : 20/05/2024
REF NO : CERT / 2024/05/47
Multiple Vulnerabilities in Apple Products
Severity Level: High
Components Affected
- Apple iOS and iPadOS versions prior to 16.7.8
- Apple iOS and iPadOS versions prior to 17.5
- Apple macOS Monterey versions prior to 12.7.5
- Apple macOS Ventura versions prior to 13.6.7
- Apple macOS Sonoma versions prior to 14.5
- Apple Safari versions prior to 17.5
- Apple watchOS versions prior to 10.5
- Apple tvOS versions prior to 17.5
Overview
Multiple vulnerabilities were identified in Apple Products. A remote attacker could exploit some of these vulnerabilities to trigger elevation of privilege, sensitive information disclosure, security restriction bypass and remote code execution on the targeted system.
Description
Multiple vulnerabilities have been reported in Apple products:
Impact
- Information disclosure
- Security restrictions bypass
- Arbitrary code execution
- Bypass authentication
- Elevation of privileges
Solution/ Workarounds
Apply appropriate security updates as mentioned in the Apple Security Updates
Reference
Disclaimer : The information provided herein is on an “as is” basis, without warranty of any kind.
Sri Lanka Computer Emergency Readiness Team | Coordination Centre
- Hotline : 101
- +94 11 269 1692
- Room 4-112, BMICH, Bauddhaloka Mawatha, Colombo 07, Sri Lanka.
- General inquiry: cert@cert.gov.lk
- Security incidents: incidents@cert.gov.lk
- Social media incidents: report@cert.gov.lk
