Apple iMessage “ForcedEntry” Vulnerability

  • CERT Admin
  • Wed Dec 01 2021
  • Alerts


Using “ForcedEntry” vulnerability, an attacker could execute an arbitrary code on the device and gain access to the device.


It was reported that attackers are exploiting a remote code execution vulnerability in Apple iMessage, that affects iOS, macOS and watchOS. This vulnerability allows a remote attacker to gain access to a device without any user interaction. Apple is aware of this issue and has released an update to resolve this vulnerability


●  Execution of suspicious commands and applications

●  Malware infection

●  Disclosure of sensitive data

Solution/ Workarounds

Apply the latest security updates as detailed in the relevant security update from Apple






The information provided herein is on an "as is" basis, without warranty of any kind.

Last updated: Wed Dec 01 2021