Government’s official IT security organisation CERT-In (Indian Computer Emergency Response Team) has ask Apple users to Immediately update their iPhone and iPad to the latest versions.
iOS 14.7.1 and iPadOS 14.7.1 were release earlier this week with critical bug fixes.
This updates fix a memory corruption zero-day vulnerability that the government confirms is being actively exploite in the wild.
CERT-In says that successful exploitation of these vulnerabilities could allow an attacker with kernel privileges to execute arbitrary code and gain elevated privileges on a targeted system.
CERT-In has issue a security alert for all iPhone and iPad users (click here to read) urging them to update to the latest iOS 14.7.1 and iPadOS 14.7.1 versions.
The memory corruption issue affects all iPhone 6s and later handsets also devices running macOS Big Sur.
This update fix is also come with macOS Big Sur 11.5.1.
This memory corruption vulnerability could be exploit by an attacker to execute malicious code and gain remote access.
The vulnerability exists in IOMobileFrameBuffer of Apple’s iOS and iPadOS due to memory corruption issue with inadequate memory handling.
CERT-In says that a hacker with kernel privileges can exploit this vulnerability using a malicious crafted application.
Government authority urges that the flaw is being exploit in the wild and advises users to apply the security patch urgently.
Those who do not updated their iPhone and iPad yet can update by going to Settings then goto General lastly goto Software Update and manually look for an update to install.
Mac users can update to the latest version by going to System Preferences in the Apple menu and clicking on Software Update.
NOTE : It is recommended that you stay on the latest update especially if you use one of the above-mentioned devices.
THANK YOU FOR READING.