The Cyber Emergency Response Team (CERT) of Punjab has issued a high-priority security advisory warning users and administrators across government organizations and the general public to immediately apply newly released Apple security updates.
The advisory highlights a series of critical vulnerabilities affecting a wide range of Apple devices and operating systems, with a clear warning that failing to update may expose systems to cyberattacks.
According to the advisory, the vulnerabilities, if left unpatched, may lead to serious consequences, including remote code execution, device takeover, information disclosure, and the bypassing of key security features.
Apple has addressed several flaws through the updates, including CVE-2025-31229, which involved a logic issue now fixed with improved checks, and CVE-2025-43222, which was a use-after-free issue resolved by removing vulnerable code. Another vulnerability, CVE-2025-43217, impacted the visibility of privacy indicators for microphone and camera access, while CVE-2025-43186 could cause unexpected application termination due to file parsing issues.
The advisory notes that updates are now available for a range of Apple platforms and devices, including iOS 18.6, iPadOS 18.6, macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7, WatchOS 11.6, TvOS 18.6, VisionOS 2.6, iPad 17.79, and Safari 18.6. Punjab CERT has labeled the severity of the threat as “major” and stresses that failure to install these updates could expose users to significant risks.
The potential impact includes high risks of compromise, unauthorized device access by threat actors, and leakage of sensitive personal or organizational data. In some cases, attackers may be able to gain complete control over affected devices. These vulnerabilities are seen as critical threats to both national and personal digital infrastructure.
All users and system administrators are urged to take immediate action by installing the recommended updates. The advisory also provides further guidance and resources through the official Punjab CERT website, and for direct queries, contact can be made via email at [email protected].