Cyber Security News

Apple fixes new zero-day flaw exploited in targeted attacks

BleepingComputer
Apple fixes new zero-day flaw exploited in targeted attacks

Apple has issued urgent updates to fix a zero-day vulnerability, CVE-2025-43300, exploited in highly sophisticated targeted attacks. This flaw involved out-of-bounds write in the Image I/O framework, affecting numerous Apple devices with potential for remote code execution. #AppleSecurity #ZeroDayVulnerability

Keypoints

  • Apple released emergency patches for a zero-day exploited in targeted attacks.
  • The vulnerability, CVE-2025-43300, involves an out-of-bounds write in the Image I/O framework.
  • This flaw affects a wide range of Apple devices including iPhones, iPads, and Macs.
  • Apple’s updates include iOS 18.6.2, iPadOS 18.6.2, and various macOS versions.
  • Since January, Apple has patched six zero-day vulnerabilities exploited in the wild in 2025.

Read More: https://www.bleepingcomputer.com/news/apple/apple-emergency-updates-fix-new-actively-exploited-zero-day/