Apple has once again stepped up its security game, rolling out critical updates for a variety of devices, including iPhones, iPads, Macs, and even Apple TVs. These updates address two actively exploited vulnerabilities that have been used in highly targeted cyberattacks. If you’re a user of any Apple device, this is a heads-up you won’t want to ignore.
The Flaws: What You Need to Know
Apple’s latest security advisory focuses on two specific vulnerabilities, both of which have been actively exploited by attackers in sophisticated, targeted efforts aimed at specific individuals. Here’s a breakdown of the two key flaws:
- CVE-2025-31200 (Core Audio Vulnerability): This memory corruption vulnerability affects the Core Audio framework. When a maliciously crafted media file is processed, it could allow an attacker to execute arbitrary code, posing a serious risk to users. With a CVSS score of 7.5, this flaw is no minor issue.
- CVE-2025-31201 (RPAC Vulnerability): The second vulnerability lies within the RPAC component, which could allow attackers to bypass Pointer Authentication. This flaw grants attackers arbitrary read and write capabilities, making it highly dangerous. With a CVSS score of 6.8, this vulnerability also warrants immediate attention.
Apple’s Fixes: A Quick Response to Growing Threats
Apple’s response has been swift. The company has addressed CVE-2025-31200 with improved bounds checking, while CVE-2025-31201 has been mitigated by removing the vulnerable section of code. These fixes come after a thorough collaboration with Google’s Threat Analysis Group (TAG), which reported the CVE-2025-31200 vulnerability.
Apple has been proactive in addressing these flaws, ensuring that users are protected from the potential fallout of these attacks.
The Bigger Picture: Why This Matters
Apple’s swift patching of these vulnerabilities is not an isolated event. In fact, these flaws bring the total number of actively exploited zero-day vulnerabilities that Apple has addressed in 2025 to five. These include:
- CVE-2025-24085 (Core Media component use-after-free bug)
- CVE-2025-24200 (Accessibility component authorization issue)
- CVE-2025-24201 (WebKit out-of-bounds write vulnerability)
Each of these flaws has been exploited by attackers to gain unauthorized access or elevate privileges. Apple has been actively working to neutralize these threats and keep users safe from targeted, malicious attacks.
Which Devices Are Affected?
Apple has released updates for several devices across its product lineup. These updates address the vulnerabilities mentioned above and are available for:
- iOS 18.4.1 & iPadOS 18.4.1: For iPhone XS and later models, iPad Pro (various sizes), iPad Air 3rd generation and later, iPad mini 5th generation and later, and more.
- macOS Sequoia 15.4.1: For Macs running the macOS Sequoia operating system.
- tvOS 18.4.1: For all Apple TV HD and Apple TV 4K models.
- visionOS 2.4.1: For the Apple Vision Pro.
What Should You Do?
With these vulnerabilities in the wild, users are strongly urged to update their devices to the latest versions as soon as possible. By doing so, you’ll ensure that you’re protected against these actively exploited flaws and safeguard your personal information from potential cyberattacks.
In summary, Apple has taken immediate action to patch vulnerabilities that were being actively exploited in sophisticated cyberattacks. This move underscores the company’s ongoing commitment to protecting its users and ensuring that its ecosystem remains as secure as possible.