Tuesday, with iOS 18.3.2, Apple deployed a solution for a severe zero-day fault affecting almost all the models supported by the iPhone and the iPad, warning that it could have been exploited in “an extremely sophisticated attack targeting specific individuals” on older iOS versions.
The fault, identified as CVE-2025-24201, is hidden in Webkit-the food safari of the engine and all the other browsers designed for iPhones and iPads. The impacted devices include the most recent iPhone XS, iPad Pro 13 inch, iPad Pro 12.9 inch (3rd generation), iPad Pro 11 inch (1st generation), iPad Air (3rd generation forward), iPad (7th generation) and iPad Mini (5th generation forward). The problem comes from a bug causing entries to out -of -limited memory locations.
Dan Goodin for Ars Technica::
“Impact: Web content made with maliciousness can be able to get out of web sandbox content,” wrote Apple in a naked review. “This is an additional solution for an attack that has been blocked in iOS 17.2. (Apple is aware of a report that this problem may have been exploited in an extremely sophisticated attack against specific targeted individuals on the versions of iOS before iOS 17.2.) “
The opinion has not said whether vulnerability has been discovered by one of its researchers or by someone outside the company. This allocation often provides clues to which the attacks and which target attacks. The opinion has not said either when the attacks started or how long they lasted.
The update bears the latest versions of iOS and iPados to 18.3.2. Users faced with the greatest threat are probably those who are targets of well-funded law enforcement organizations or nation state spies. They must install the update immediately. Although there is no indication that vulnerability is used in an opportunistic way compared to a wider set of users, it is good practice to install updates within 36 hours of the presence.
MacDailyNews take: Everyone should go to iOS 18.3.2 (and iPados 18.3.2) as soon as possible.
Please help support MacDailyNews – and enjoy articles, comments, discussion, cat, etc.:: MacDailyNews.Substack.com. THANKS!
Support MacDailyNews at no additional cost for you by Use this link to buy on Amazon.
