The Indian Computer Emergency Response Team (CERT-In) has issued a high-severity alert regarding multiple vulnerabilities in Apple Vision Pro, which runs on the newly developed VisionOS. These security flaws pose serious risks, potentially allowing malicious actors to take control of the system, access confidential user data, and cause significant disruptions.
Apple Vision Proで友達と一緒サッカー観戦
このニーズは確実にありそうpic.twitter.com/vAYVsKCwMK
— IVAN@AR × Marketing (@van_eng622) June 14, 2024
The advisory emphasizes that these vulnerabilities can be exploited in various ways, posing substantial security threats. One critical flaw enables attackers to execute arbitrary code with kernel-level privileges, granting them the highest level of access to the system. This access bypasses most built-in security mechanisms, allowing attackers to install malicious software or modify system settings without detection.
Unexpected Disruptions In Apple Vision pro
Another major issue is the instability caused to applications, which may crash unexpectedly. This disruption can negatively impact user experience and potentially lead to data loss. Additionally, the vulnerabilities permit bypassing kernel memory protections, which are crucial for maintaining system stability and security.
Exploiting this flaw could give attackers deeper access to the system, enabling them to conduct malicious activities without being detected.
The advisory also warns about the potential for user fingerprinting, which involves tracking and identifying users based on their device usage. This poses a significant privacy risk, as it could lead to unauthorized user profiling and monitoring. Moreover, the vulnerabilities allow attackers to circumvent security restrictions, effectively nullifying the safeguards intended to protect the system from unauthorized access.
Also Read: Samsung Unveils Shortcut Sneakers, Sync Your Steps With Smartphone Commands
