What’s new: Apple has released emergency updates to address a zero-day vulnerability tracked as CVE-2025-43300, which was exploited in targeted attacks. The flaw, caused by an out-of-bounds write weakness in the Image I/O framework, can lead to memory corruption and potential remote code execution. The updates are available for iOS 18.6.2, iPadOS 18.6.2, iPadOS 17.7.10, macOS Sequoia 15.6.1, macOS Sonoma 14.7.8, and macOS Ventura 13.7.8.
Who’s affected
The vulnerability impacts a wide range of Apple devices, including iPhone XS and later, various iPad models (including iPad Pro, iPad Air, iPad, and iPad mini), and Macs running the affected macOS versions.
What to do
- Install the latest security updates for your Apple devices immediately to mitigate the risk of exploitation.
