New VisionOS brings bad news, CERT-In issues security warning
CERT-In has issued a high-severity warning regarding multiple vulnerabilities in the Apple Vision Pro.
According to the advisory, the bug in VisionOS can be exploited in many ways by hackers.
Because of these bugs, attackers can easily put in place arbitrary code with kernel privileges.
While Apple is excitedly talking about the new AI features that Apple announced during WWDC 2024, the Indian Computer Emergency Response Team (CERT-In) has issued a high-severity warning regarding multiple vulnerabilities in a particular Apple device. I am talking about the Apple Vision Pro here. A big security warning comes from India’s Computer Emergency Response Team (CERT-In) in this regard.
According to the advisory, the bug in VisionOS can be exploited in many ways by hackers. It was further informed that it has not one but multiple vulnerabilities in Apple’s latest device, the Vision Pro. Attackers can easily take over the system due to these flaws access sensitive user data, and cause significant disruptions.
Also read: Our extended reality truly begins in 2024 with the Apple Vision Pro
Because of these bugs, attackers can easily put in place arbitrary code with kernel privileges. This will give them the highest level of system access. They can then easily bypass most built-in security measures. Users can then lose control of unauthorised access, and attackers can even install malicious software, and make undetected modifications to system settings.
Another issue that has been highlighted is that the apps can terminate unexpectedly. Because of this, users can even end up losing their data. Overall, both the system’s stability and security can be hampered.
Sadly this is not all, the advisory also informs how there are various privacy concerns too. There is a possibility of tracking and identifying users based on device usage. This could lead to unauthorised profiling and monitoring. Personal data can also be accessed and compromised.
Also read: Apple oversold Vision Pro hype, cuts production due to tepid demand
Because of the bugs in VisionOS, Denial of Service (DoS) attacks can also be enabled. Attackers can make the device inoperable by overwhelming it with excessive requests or exploiting specific weaknesses to cause crashes.
To tackle this, Apple has released a software update for the Vision Pro. Users should immediately update their devices.
Mustafa Khan
Mustafa is new on the block and is a tech geek who is currently working with Digit as a News Writer. He tests the new gadgets that come on board and writes for the news desk. He has found his way with words and you can count on him when in need of tech advice. No judgement. He is based out of Delhi, he’s your person for good photos, good food recommendations, and to know about anything GenZ. View Full Profile