WHAT ARE YOU LOOKING FOR?

Popular Tags

Raleigh, NC

32°F
Scattered Clouds Humidity: 79%
Wind: 2.06 M/S

Apple rolls out security updates to patch multiple flaws in iOS and macOS

Security Hits: 235
Apple rolls out security updates to patch multiple flaws in iOS and macOS

Apple has released critical security updates for iOS and macOS to address vulnerabilities that could be easily exploited by attackers.

These flaws could allow attackers to run malicious code simply by opening a specially crafted image, video, or website. 

The security patches target the following vulnerabilities: 

  • AppleJPEG CVE-2025-31251: A maliciously crafted media file could cause an app to terminate unexpectedly or corrupt process memory. 
  • CoreMedia CVE-2025-31233: A maliciously crafted video file could cause an app to terminate unexpectedly or corrupt process memory. 
  • ImageIO CVE-2025-31226: A maliciously crafted image could cause a denial-of-service. 
  • WebKit CVE-2025-31223: Malicious web content could lead to memory corruption. 
  • WebKit CVE-2025-24223: Malicious web content could lead to memory corruption. 
  • WebKit CVE-2025-31217: Malicious web content could cause an unexpected Safari crash. 
  • WebKit CVE-2025-31215: Malicious web content could cause an unexpected process crash. 
  • WebKit CVE-2025-31206: Malicious web content could cause an unexpected Safari crash. 
  • WebKit CVE-2025-31257: Malicious web content could cause an unexpected Safari crash. 

The iOS 18.5 update addresses several critical flaws in AppleJPEG, CoreMedia, and other components that could allow attackers to run code or leak data via malicious media files. Apple also patched severe file-parsing vulnerabilities in CoreAudio, CoreGraphics, and ImageIO that could cause unexpected app termination, corrupt process memory, or leak data when opening malicious content. Some of the vulnerabilities could also trigger a denial-of-service condition or lead to memory corruption. 

One of the vulnerabilities, CVE-2025-31217, could be triggered by processing malicious web content, resulting in an unexpected Safari crash. 

Apple also addressed a Baseband flaw, CVE-2025-31214, which could allow an attacker to intercept traffic on the iPhone 16e. In addition, the update fixes a privilege escalation bug in mDNSResponder, CVE-2025-31222, a data-leak issue in Notes on locked screens, and other security gaps in FrontBoard, iCloud Document Sharing, and Mail Addressing. 

iOS 18.5 is now available for iPhone XS and newer models. The accompanying iPadOS update supports iPad Pro (2018 and later), iPad Air 3rd generation, iPad 7th generation, iPad mini 5, and later devices. 

Apple has also released updates for macOS Sequoia, macOS Sonoma, macOS Ventura, as well as for watchOS, tvOS, and visionOS. 

 

Found this article interesting? Follow us on X(Twitter) ,Threads and FaceBook to read more exclusive content we post. 

Image
Back To Top

With Cybersecurity Insights, current news and event trends will be captured on cybersecurity, recent systems / cyber-attacks, artificial intelligence (AI), technology innovation happening around the world; to keep our viewers fast abreast with the current happening with technology, system security, and how its effect our lives and ecosystem. 

Please fill the required field.