gadget-bridge
HomeOther TechSmart WearablesIndian authorities alert Apple Watch models running watchOS versions older than 8.7...

Indian authorities alert Apple Watch models running watchOS versions older than 8.7 have vulnerabilities

The government has requested that users of the Apple Watch apply the relevant updates that are part of the watchOS 8.7 release.

- Advertisement -

The Indian government has warned that Apple Watch users have a number of security flaws. According to the Indian Computer Emergency Response Team (CERT-in) Apple Watch models running watchOS versions older than 8.7 have vulnerabilities that might let attackers run arbitrary code and get around security measures. 

The vulnerability is also highlighted on Apple’s support page. Therefore Apple Watch users are recommended to update to watchOS 8.7, the most recent version, in order to deploy the essential patches.

- Advertisement -

“Multiple vulnerabilities have been reported in Apple Watch which could allow an attacker to execute arbitrary code and bypass security restriction on the targeted system,” the CERT-in in its note said.

According to a vulnerability bulletin from the Indian Computer Emergency Response Team, various vulnerabilities affect Apple Watch models using watchOS versions older than 8.7. It has a high severity assessment from the cybersecurity nodal agency.

- Advertisement -

According to CERT-in, these vulnerabilities exist in Apple watch due to buffer overflow in AppleAVD component; an authorization issue in AppleMobileFileIntegrity component; out-of-bounds write in Audio, ICU and WebKit component; type confusion in the Multi-Touch component; Multiple out-of-bounds write and memory corruption in GPU Drivers component; out-of-bounds read in Kernel component; and memory initialization in libxml2 component.

Moreover, the Indian authority stated that a remote attacker could exploit these vulnerabilities by sending a specially- crafted request. Successful exploitation of these vulnerabilities could allow the attacker to execute arbitrary code and bypass security restrictions on the targeted system.

- Advertisement -

CERT-in also said that the flaws might let an attacker run arbitrary code on the targeted smartwatch and get through Apple’s security measures. In addition to this, on its support page, Apple confirmed the flaw and noted under AppleAVD impact that it might allow a remote user to execute kernel code.

As a result, the government has requested that users of the Apple Watch install the relevant updates that are part of the watchOS 8.7 update.

For the latest gadget and tech news, and gadget reviews, follow us on Twitter, Facebook and Instagram. For newest tech & gadget videos subscribe to our YouTube Channel. You can also stay up to date using the Gadget Bridge Android App. You can find the latest car and bike news here.

- Advertisement -

Support Us

We are a humble media site trying to survive! As you know we are not placing any article, even the feature stories behind any paywall or subscription model. Help us stay afloat, support with whatever you can!

Support us
- Advertisement -
Komila Singh
Komila Singhhttp://www.gadgetbridge.com
Komila is one of the most spirited tech writers at Gadget Bridge. Always up for a new challenge, she is an expert at dissecting technology and getting to its core. She loves to tinker with new mobile phones, tablets and headphones.
- Advertisment -
- Advertisement -

LEAVE A REPLY

Please enter your comment!
Please enter your name here

- Advertisement -

Must Read

Amazon Great Indian Festival (GIF) to begin on October 8: Festive Sale details inside

Amazon Great Indian Festival (GIF) to begin on October 8: Festive...

0
Amazon has officially announced that its festive sale 'Great Indian Festival' will begin on October 8 offering sellers and partners a chance to connect...
- Advertisement -

You cannot copy content of this page