- Apple has released security updates to fix a major flaw affecting iOS, iPadOS, and macOS.
- The flaw, tracked as CVE-2025-43300, is currently being exploited in targeted attacks.
- The vulnerability affects the ImageIO framework, which could result in memory corruption from malicious image files.
- Security patches are available for several recent versions of iOS, iPadOS, and macOS.
- This is the seventh zero-day vulnerability Apple has addressed in 2025.
Apple issued security patches on August 21, 2025, to address a zero-day vulnerability that has been actively exploited on devices running iOS, iPadOS, and macOS. The company acted after identifying an attack that targeted specific individuals using this flaw.
The vulnerability, tracked as CVE-2025-43300, appears in the ImageIO framework. According to Apple, the flaw allows attackers to cause memory corruption when a device processes a specially crafted image. In its advisory, Apple stated, “Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals.”
Apple discovered the bug internally and has fixed it with improved bounds checking in the following software versions: iOS 18.6.2 and iPadOS 18.6.2 for phones and tablets from iPhone XS and later, several iPad Pro and iPad models; iPadOS 17.7.10 for older iPad Pro and iPad 6th generation; macOS Ventura 13.7.8 for Ventura users; macOS Sonoma 14.7.8 for Sonoma, and macOS Sequoia 15.6.1 for Sequoia.
The company has not disclosed who is responsible for the attacks or the identities of the victims. However, Apple warned that the flaw is likely being used in highly targeted campaigns.
Including this latest update, Apple has now patched seven zero-day vulnerabilities in 2025 that were actively exploited. Other flaws addressed earlier this year included CVE-2025-24085, CVE-2025-24200, CVE-2025-24201, CVE-2025-31200, CVE-2025-31201, and CVE-2025-43200. In July, another patch fixed a Safari vulnerability (CVE-2025-6558) linked to attacks on the Chrome browser.
✅ Follow BITNEWSBOT on Telegram, Facebook, LinkedIn, X.com, and Google News for instant updates.
Previous Articles:
- Target Stock Drops 7% as CEO Cornell Replaced by Insider Fiddelke
- Windtree Delisted From Nasdaq After $700M Binance BNB Pivot Fails
- US judge unfreezes $57.6M USDC tied to Libra rug pull scandal
- Popular Password Manager Extensions Vulnerable to Clickjacking Attacks
- Tesla Stock Slides as SpaceX Setbacks Stir Investor Concerns
