Urgent: Apple Rushes Critical Security Fix for Zero-Day Attack Targeting iPhones and Macs

Urgent: Apple Rushes Critical Security Fix for Zero-Day Attack Targeting iPhones and Macs

Apple Releases Critical Security Updates to Fix Zero-Day Vulnerability

Apple has issued urgent software updates addressing multiple security vulnerabilities, including a critical zero-day flaw (CVE-2025-24085) that has been actively exploited. The zero-day vulnerability, found in the Core Media component, could allow malicious applications to gain elevated privileges on affected devices.

Affected Devices and Updates:
– iOS 18.3 and iPadOS 18.3: iPhone XS and later models
– iPad Pro (all recent generations)
– iPad Air (3rd generation+)
– iPad (7th generation+)
– iPad mini (5th generation+)
– macOS Sequoia 15.3
– tvOS 18.3: Apple TV HD and 4K models
– visionOS 2.3: Apple Vision Pro
– watchOS 11.3: Apple Watch Series 6 and later

Additional Security Fixes:
– Five AirPlay vulnerabilities discovered by Uri Katz (Oligo Security)
– Three CoreAudio vulnerabilities (CVE-2025-24160, -24161, -24163) reported by Google’s Threat Analysis Group

While specific details about the zero-day exploitation remain undisclosed, Apple confirms the vulnerability was exploited in versions prior to iOS 17.2. Users are strongly advised to update their devices immediately to protect against potential security threats.

Share This Article