Accessibility Options |  Sitemap |  Contact Us
   
 
 
 
HOME space ABOUTCERTIn space KNOWLEDGEBASE space TRAINING space ADVISORIES space VULNOTES space space Facebook space x space insta space youtube space Linkedin
WLine
DigitalIndia
WLine
csk
WLine
Full Member FIRST
Line
Operational Member TFCSIRT
Line
Accredited Member APCERT
Line
Global Research Partner APWG
Line
Associate Partner Charter
Line
CNA
WLine
 Directions by CERT-In under  Section 70B, Information  Technology Act 2000
WLine
 Guidelines on Information  Security Practices for  Government Entities
WLine
 Technical Guidelines on NEW  SOFTWARE BILL OF MATERIALS  (SBOM)
WLine
 Cyber Security GuidelinesNEW  for Smart City Infrastructure
About CERT-in
Line
point point Client's /Citizen's Charter
Line
point point Roles & Functions
Line
point point Advisory Committee
Line
point point Act/Rules/Regulations
Line
point point Internal Complaint Committee         (ICC) 
Line
point point RFC2350 
line
point point Press  
Line
point point Tender 
Line
point point Subscribe Mailing List
Line
point point Contact Us
Line
Line
Reporting
point
 Incident Reporting
point
Line
point
 Vulnerability Reporting
point
Line
point
 Feedback
point
Line
KnowledgeBase
Line
point Point Guidelines
Line
point Point Presentations
Line
point Point White Papers 
Line
point Point Annual Report 
Line
Line
Line
line
Line
line
line
Advisories
Line
VulnerabilityNotes
Line
RelatedLinks
Line
point Point World CERTs
Line
point point Antivirus Resources
line
point point FAQ
line
line
Line
Line
line
line
line
line
line
line
line
line
line
line
line
line
line
line
line
line
line
line
line
line
line
line
spacer
Home - AdvisoriesPrint
point

CERT-In Advisory CIAD-2024-0038

Multiple vulnerabilities in Apple products

Original Issue Date: August 02, 2024

Severity Rating: High

Software Affected

  • Apple iOS versions prior to 17.6 and iPadOS versions prior to 17.6
  • Apple iOS versions prior to 16.7.9 and iPadOS versions prior to 16.7.9
  • Apple macOS Sonoma versions prior to 14.6
  • Apple macOS Ventura versions prior to 13.6.8
  • Apple macOS Monterey versions prior to 12.7.6
  • Apple watchOS versions prior to 10.6
  • Apple tvOS versions prior to 17.6
  • Apple visionOS versions prior to 1.3
  • Apple Safari versions prior to 17.6

Overview

Multiple vulnerabilities have been reported in Apple products which could allow an attacker to access sensitive information, execute arbitrary code, bypass security restrictions, cause denial of service (DoS) and perform spoofing attacks on the targeted system.

Description

Multiple vulnerabilities have been reported in Apple products:



Solution

Apply appropriate software updates as mentioned in the Apple Security updates:  
https://support.apple.com/en-us/HT201222
https://support.apple.com/en-us/HT214121
https://support.apple.com/en-us/HT214117
https://support.apple.com/en-us/HT214116
https://support.apple.com/en-us/HT214119
https://support.apple.com/en-us/HT214120
https://support.apple.com/en-us/HT214118
https://support.apple.com/en-us/HT214124
https://support.apple.com/en-us/HT214122
https://support.apple.com/en-us/HT214123

CVE Name
CVE-2023-27952
CVE-2023-38709
CVE-2023-52356
CVE-2023-6277
CVE-2024-2004
CVE-2024-23261
CVE-2024-23296
CVE-2024-2379
CVE-2024-2398
CVE-2024-2466
CVE-2024-24795
CVE-2024-27316
CVE-2024-27804
CVE-2024-27823
CVE-2024-27826
CVE-2024-27862
CVE-2024-27863
CVE-2024-27871
CVE-2024-27872
CVE-2024-27873
CVE-2024-27877
CVE-2024-27878
CVE-2024-27881
CVE-2024-27882
CVE-2024-27883
CVE-2024-40774
CVE-2024-40775
CVE-2024-40776
CVE-2024-40777
CVE-2024-40778
CVE-2024-40779
CVE-2024-40780
CVE-2024-40781
CVE-2024-40782
CVE-2024-40783
CVE-2024-40784
CVE-2024-40785
CVE-2024-40786
CVE-2024-40787
CVE-2024-40788
CVE-2024-40789
CVE-2024-40793
CVE-2024-40794
CVE-2024-40795
CVE-2024-40796
CVE-2024-40798
CVE-2024-40799
CVE-2024-40800
CVE-2024-40802
CVE-2024-40803
CVE-2024-40804
CVE-2024-40805
CVE-2024-40806
CVE-2024-40807
CVE-2024-40809
CVE-2024-40811
CVE-2024-40812
CVE-2024-40813
CVE-2024-40814
CVE-2024-40815
CVE-2024-40816
CVE-2024-40817
CVE-2024-40818
CVE-2024-40821
CVE-2024-40822
CVE-2024-40823
CVE-2024-40824
CVE-2024-40827
CVE-2024-40828
CVE-2024-40829
CVE-2024-40832
CVE-2024-40833
CVE-2024-40834
CVE-2024-40835
CVE-2024-40836
CVE-2024-4558
CVE-2024-6387

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.

Contact Information

Email: info@cert-in.org.in
Phone: +91-11-22902657

Postal address

Indian Computer Emergency Response Team (CERT-In)
Ministry of Electronics and Information Technology
Government of India
Electronics Niketan
6, CGO Complex, Lodhi Road,
New Delhi - 110 003
India

 
Indian Computer Emergency Response Team - CERT-In, Ministry of Electronics and Information Technology, Government of India.
Website Policies |  Terms of Use |  Help Last Updated On May 10, 2025