Apple has Released Updated Versions of its iOS and iPados mobile operating system (OS) that address a potentially dangerous vulnerability that appeares to haven exploited in the country.
The two releases, iOS 18.3.2 and iPados 18.3.2Are available for iPhone XS and Later, iPad Pro 13-Inch, iPad Pro 12.9-Inch 3rd Generation and Later, iPad Pro 11-Inch 1st Generation and Later, IPAD AIRD AIRD Generation and Later, IPAD 7th Generation and Later 5th Generation and Later.
Collectively, the update addresses a single vulnerability tracked as cve-2025-24201. Apple Customarily Releases very sparse details of the vulnerability
Apple Reveled That Flaw is an out-of-bounds write issue affecting the Webkit Open Source Web Browser Engine That Powers Safari, Mail, App Store and Many Other Apple and Linux Ecosystem Applications.
Cupertino said: “Maliciously crafted web content may be able to break out of web content sandbox. This is a supplementary fix for an attack that was blocked in iOS 17.2. “
Version 17.2 of the two Oses Dates Back Just Over a Year to December 2023, and Besides Security Fixes Burght A Large Number of New Features to Apple's Mobile Estate, Including the Launch of a Dayary Fature Called Journal, and enhancements to its weather app, among other things.
Nation-State Adversary?
In its update notes, apple indicated that it took steps to address the issue after its after it is the aware of exploitation of Cve-2025-24201 in the wild. The firm said: “Apple is aware of a report that this issue may have been exploited in an extramely sophisticated attack aganst Specific Specific Targeted Individuals
The fact that this Attack is being described as sophisticated and targeted likely indicates that the vulnerability was used by a nation-story threat actor, posesibly agivals of intellect Services in that country. To western ears, this could indicate exploitation by actors linked to China, Iran, North Korea or Russia.
However, Given Apple Mobile Devices are so widely used, other countries and even private companies are known to seek out and leverage vulnerabilities in its device estate for Simillar purposes.
Notably, disgraged Israeli spyware manufacturer nso group – The Organization behind the pegasus malware that was family Used by the saudi arabian regime Against Murdered Journalist Jamal Khashoggi – Explited Multiple Apple Vulnerabilites in the service of its mercenary activities.
Even though this might indicate the risk to everyday members of the public might be limited, sylvain cortes, vice-president of strategy at HackuityTold Computer Weekly That All Users Should Take Steps to Protect Themselves.
“The flaw poses a significant risk to users of older versions of the operating system, particularly that related before iOS 17.2,” said cortes. “We highly encourage users to update their devices to iOS 18.3.2 as soon as possible to maintain the security and privacy of their data.”
Besides the fix, the update also brings new customization options for apple users, a redesigned photos applications, “New Ways to Express Yourself” in Messages, A Hiking Feature In Maps, and Ullets to Wallets.