Apple on Monday, the fixes were late for three vulnerabilities that have been operating active in the oldest models and previous versions of operating systems.
The vulnerabilities in question are listed below –
- CVE-2025-24085 (CVSS score: 7.3) – A user -use bug in the basic media component which could allow a malicious application already installed on a device to raise privileges
- CVE-2025-24200 (CVSS score: 4.6) – An authorization problem in the accessibility component which could allow a malicious actor to deactivate the limited USB mode on a locked device as part of a Cyber physical attack
- CVE-2025-24201 (CVSS score: 8.8) – An out -of -limit writing problem in the webkit component that could allow an attacker to create malicious web content so that it can get web content sandbox
Updates are now available for versions of the following operating system –
The fixes cover the following devices –
- IOS 15.8.4 and iPados 15.8.4 – iPhone 6S (all models), iPhone 7 (all models), iPhone SE (1st generation), iPad Air 2, iPad Mini (4th generation) and iPod Touch (7th generation)
- iOS 16.7.11 and iPados 16.7.11 – iPhone 8, iPhone 8 Plus, iPhone X, iPad 5th generation, iPad Pro 9.7 inch and ipad pro 12.9 inch 1st generation
- IPADOS 17.7.6 – IPAD PRO 12.9 inch 2nd generation, iPad Pro 10.5 inch and ipad 6th generation
Development occurs while the technology giant has emerged iOS 18.4 and iPados 18.4 To remedy 62 faults, MacOS Sequoia 15.4 To connect 131 faults, TVOS 18.4 To resolve 36 faults, Visionos 2.4 To correct 38 faults, and Safari 18.4 To repair 14 faults.
Although none of the newly disclosed gaps has been subjected to active exploitation, users are recommended to update their devices to the latest version to save against potential threats.