India’s cyber watchdog CERT-In has issued an urgent security advisory for Apple device users, citing a newly discovered vulnerability that could expose millions to cyber threats.

The flaw, rated medium in severity, impacts nearly every corner of Apple’s ecosystem—from iPhones and iPads to MacBooks and even Vision Pro headsets.

What’s the problem?

The vulnerability lies in the FrontParser component of Apple’s operating systems. Technically, it’s an out-of-bounds write flaw. In simple terms, it can be exploited if a device attempts to render a maliciously crafted font. Once triggered, attackers could:

  • Crash apps,
  • Corrupt system memory, or
  • Causes temporary denial-of-service issues, disrupting parts of the system.

Which devices are affected?

According to CERT-In, all Apple devices running outdated software versions are vulnerable. That includes:

  • iOS & iPadOS: prior to 18.7.1 and 26.0.1
  • macOS: Tahoe (before 26.0.1), Sequoia (before 15.7.1), Sonoma (before 14.8.1)
  • visionOS: up to version 26.0.1

Essentially, any newer Apple device without the latest update is at risk.

Why it matters

The threat isn’t just for individual users. Businesses relying on Apple devices for daily operations could face instability, service disruptions, or even data tampering if the flaw is left unpatched.

What you should do

The fix is straightforward: update immediately.

  1. Go to Settings > Software Update and install the latest version.
  2. Enable automatic updates to safeguard against future vulnerabilities.
  3. With cyber risks growing, staying updated is no longer optional—it’s essential.