.png){kind=logo}
The Indian Computer Emergency Response Team (CERT-In) has dropped a ‘High Severity’ warning to Apple users for multiple critical vulnerabilities in iPhones, iPads, and Macs. These security gaps can potentially allow hackers to take control of devices.
The November 10 advisory (CIAD-2025-0041) warns that the iOS bugs could leak personal data, including photos, chats, and financial information, and even let attackers lock users out of their devices.
According to CERT-In, these bugs allow attackers to execute ‘arbitrary code,’ meaning they can install and run malicious software without the user's consent in secrecy.
Once exploited, hackers may gain administrative privileges, access or delete data, and bypass built-in security protections. The threat further extends to possible Denial-of-Service (DoS) attacks which could render a device unusable.
This vulnerability could easily become an entry point for serious risks to personal and financial security among Indians who rely on Apple devices for UPI payments, online banking, DigiLocker, and Aadhaar access. Professionals working with Macs for either business or design may also become potential targets for data theft or loss.
The advisory lists the following as affected systems:
All iPhones/iPads running iOS or iPadOS below 26.1 (or 18.7.2 for older models)
macOS Tahoe before 26.1, Sequoia before 15.7.2, Sonoma before 14.8.2
watchOS, tvOS, and visionOS below 26.1 Safari and Xcode below 26.1
Also Read: Best Free Apple CarPlay Apps for iPhone You Need to Try
Apple has already released updates to fix the flaws, and users are advised to install the latest software immediately. One needs to go to Settings > General > Software Update, and make sure Automatic Updates is switched on. This can protect iPhone owners from cyber attacks.
