CERT-In Issues High-Severity Alert for Apple Device Vulnerabilities

Severity: High (Score: 72.0)

Sources: Storyboard18

Summary

On March 26, 2026, India's CERT-In issued a high-severity alert regarding multiple vulnerabilities in Apple devices, including iPhones, iPads, Macs, and Apple Watches. These vulnerabilities could allow attackers to execute arbitrary code, gain elevated privileges, and bypass security restrictions. CERT-In highlighted risks such as information disclosure and denial-of-service (DoS) attacks that could impact both individual users and organizations. The vulnerabilities stem from issues across various components of Apple's software ecosystem, indicating a wider attack surface due to multiple CVEs. Affected software versions include iOS and iPadOS prior to 26.4, macOS Tahoe prior to 26.4, and several others across Apple's platforms. Users are urged to update their devices immediately to mitigate risks associated with data theft, malware, and unauthorized access. The advisory emphasizes that outdated software increases vulnerability to attacks. Key Points: • CERT-In has flagged multiple high-severity vulnerabilities in Apple devices. • Affected devices include iPhones, iPads, Macs, and Apple Watches running outdated software. • Users are advised to update their devices immediately to mitigate risks.

Key Entities

• Data Breach (attack_type)
• DDoS (attack_type)
• Denial of Service (attack_type)
• India (country)
• Apple Vision Pro (platform)
• Apple Watch (platform)
• IOS (platform)
• IPad (platform)
• IPadOS (platform)