Tuesday, August 16, 2022
Advertisement
HomeEntertainmentCert-In-Detects High Severity Threats In Firefox Browser, Chromes, Iphone, Ipad, Mac And...

Cert-In-Detects High Severity Threats In Firefox Browser, Chromes, Iphone, Ipad, Mac And Other Devices!!!

Cert-In Updates: Software upgrades can be used to close these vulnerabilities.

Must Read- Latest Updates About the Movie Carter Release Date, Cast, Plot, and Everything we know so far

HIGHLIGHTS:

• Criminals have the ability to run any code.
• Machines may experience DoS assaults from attackers.
• They have access to private data as well.

Today I am going to write about technology updates today: Multiple threats with high severity are discovered by CERT-In in Apple’s macOS, iOS, and iPadOS.

The iOS, iPadOS, and macOS operating systems from Apple as well as Google’s ChromeOS and the Mozilla Firefox web browser all contain a number of high severity vulnerabilities, according to the Indian Computer Emergency Response Team (CERT-In), which was appointed by the Ministry of Electronics and Information Technology.

For iPhone and iPad models, there is iOS, for iPad models there is iPadOS, and for Mac computers there is macOS. According to the nodal agency, these flaws cn be exploited to get beyond security measures and launch denial-of-service (DoS) attacks that render the devices useless.

According to CERT-In, Mac computers running macOS Catalina with a security update before 2022-005, macOS Big Sur versions before 11.6.8, and macOS Monterey versions before 12.5 are vulnerable.

A remote attacker might take use of the flaws in older versions of macOS, iOS, and iPadOS by convincing a victim to visit a malicious website. The cybercriminal has the ability to run arbitrary code, get through security measures, and put the targeted system under DoS conditions.

Out-of-bounds reads in AppleScript, SMB, and the Kernel as well as out-of-bounds writes in the Audio, ICU, PS Normalizer, GU Drivers, SMB, and WebKit are the causes of the macOS vulnerabilities. Information leakage in the Calendar and iCloud Photo Library, as well as authorization concerns, have been discovered in AppleMobileFileIntegrity.

PRIOR TO VERSION 15.6 OF IOS AND IPADOS, SIMILAR FLAWS WERE DISCOVERED

The macOS flaws include information disclosure in the Calendar and iCloud Photo Library, as well as out-of-bounds write in the Audio, ICU, GPU Drivers, and WebKit. Out-of-bounds read in ImageIO and Kernel have also been discovered.

Versions of Mozilla Firefox before 103, as well as ESR versions before 102.1 and 91.12, have been discovered to be vulnerable.

The browser engine’s faults in memory safety, preload cache bypasses of subresource integrity, and leaks of cross-site resource redirection information while utilising the Performance API are just a few causes of the vulnerabilities. These flaws could give an attacker access to private data on the intended system.

SIMILAR DANGERS TO FIREFOX ARE POSED BY GOOGLE CHROMEOS’S FLAWS

Because of use-after-free mistake in the Blink XSLT component, out-of-bounds read in the compositing component, erroneous Extension API implementation, and other issues, the vulnerabilities exist in Google ChromeOS LTS channel versions earlier than 96.0.4664.215.
According to CERT-In, software updates can be used to address these vulnerabilities.

The software updates should be installed as soon as possible by users of these operating systems and Mozilla Firefox.

For more such news related to technology updates today and all important global news do visit on our website.

Cert-In
RELATED ARTICLES
- Advertisment -

Most Popular

Recent Comments

%d bloggers like this: