Apple has issued critical software updates to mitigate several security vulnerabilities across its devices, including a zero-day exploit tracked as CVE-2025-24085. This specific vulnerability, identified as a use-after-free bug in Core Media, could allow malicious apps to gain elevated privileges. Though there are no specifics on the exploitation methods or targets, the updates improve memory management across various operating systems, including iOS 18.3 and macOS Sequoia 15.3. Furthermore, vulnerabilities identified in AirPlay have also been addressed, highlighting ongoing security efforts following reports by researchers.
Apple has released software updates addressing security flaws, including an actively exploited zero-day vulnerability, enhancing memory management in affected devices.
CVE-2025-24085, a use-after-free bug, allowed malicious applications to elevate privileges on iOS devices, impacting versions prior to iOS 17.2.
The updates also fix five AirPlay vulnerabilities that could lead to unexpected system termination and other security risks, discovered by Oligo Security.
Apple has yet to attribute the discovery of this security flaw to a researcher, maintaining a level of confidentiality regarding real-world attack methodologies.
Collection
[
|
...
]