The official site for Saudi CERT
Apple Updates
4060
Warning Date
Severity Level
Warning Number
Target Sector
6 November, 2020
● Critical
2020-2018
All
Description:
Apple has released a security updates to address multiple vulnerabilities in their products. Apple recommends updating the products to the following versions:
- iOS 12.4.9
- Available for:
- iPhone 5s
- iPhone 6 and 6 Plus
- iPad Air
- iPad mini 2 and 3
- iPod touch (6th generation)
- Available for:
- iOS 14.2 and iPadOS 14.2
- Available for:
- iPhone 6s and later
- iPod touch 7th generation
- iPad Air 2 and later
- iPad mini 4 and later
- Available for:
- tvOS 14.2
- Available for:
- Apple TV 4K
- Apple TV HD
- Available for:
- watchOS 5.3.9
- Available for:
- Apple Watch Series 1 and later
- Available for:
- watchOS 6.2.9
- Available for:
- Apple Watch Series 1
- Apple Watch Series 2
- Available for:
- watchOS 7.1
- Available for:
- Apple Watch Series 3 and later
- Available for:
- macOS Catalina 10.15.7
Threats:
- A user may send video in Group FaceTime calls without knowing that they have done so.
- A user may answer two calls simultaneously without indication they have answered a second call.
Attacker could exploit these vulnerabilities by doing the following:
- Processing maliciously audio, image, font or crafted web content may lead to code execution.
- Privilege escalation.
- Cause unexpected application termination.
- Arbitrary code execution with high privilege.
Best practice and Recommendations:
The CERT team encourages users to review Apple security advisory and apply the necessary updates:
Rate the content
Share the page
