Cupertino, January 28, 2025 – Apple patches a critical zero-day vulnerability (CVE-2025-24085) actively exploited against iPhones and Macs.
Apple has swiftly rolled out critical updates to patch an actively exploited zero-day vulnerability that put millions of iPhones, Macs, and other devices at risk. The flaw, tracked as CVE-2025-24085, was exploited in the wild, exposing users to potential privilege escalation attacks by malicious apps.
This vulnerability, residing in Apple’s Core Media component, could allow attackers to gain elevated access on compromised devices. Apple’s official advisory warned:
We are aware of reports that this issue has been actively exploited against older iOS versions.
The patch, now available across multiple devices—including iOS 18.3, macOS Sequoia 15.3, and watchOS 11.3—addresses memory management flaws with enhanced safeguards.
Cybersecurity expert Fiona Blake commented:
This zero-day underscores how even leading tech giants like Apple can become targets. It's crucial to update devices immediately.
Adding to the urgency, the update also fixes five AirPlay vulnerabilities, which, according to Oligo Security, could trigger system crashes or arbitrary code execution. Google’s Threat Analysis Group (TAG) identified three CoreAudio bugs that caused app crashes with specially crafted files.
Tech user Samantha Hayes shared her concern:
When even Apple isn’t immune, it makes you wonder—how safe are our devices really?
Apple’s quick response highlights the escalating battle between corporations and cybercriminals. Users are urged to update their devices promptly to avoid potential threats.
Other News At VPNRanks
Hey, wait!
Stay informed on the latest privacy updates, cybersecurity insights, and internet freedom news by following VPNRanks news daily! As your primary resource for critical updates in online security, we ensure you’re always in the know. Make VPNRanks your go-to guide for safeguarding your digital life.
