Apple today released iOS 18.6.2, iPadOS 18.6.2, and macOS Sequoia 15.6.1 updates, and iPhone, iPad, and macOS users should immediately update their devices, as the updates fix a security vulnerability that is known to have been actively exploited in the wild.
According to Apple’s security support documents, memory corruption could result from devices that were sent a malicious image file.
ImageIO
Available for: iPhone XS and later, iPad Pro 13-inch, iPad Pro 12.9-inch 3rd generation and later, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 7th generation and later, and iPad mini 5th generation and later
Impact: Processing a malicious image file may result in memory corruption. Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals.
Description: An out-of-bounds write issue was addressed with improved bounds checking.
CVE-2025-43300: Apple
Apple says that it is aware of a report that the issue “may have been exploited in an extremely sophisticated attack against specific targeted individuals.” While the wording indicates average users don’t need to worry too much, it’s still a good idea to update your device as soon as possible.
In addition to iOS 18.6.2, iPadOS 18.6.2, and macOS Sequoia 15.6.1 updates, Apple has also released security fixes with iPadOS 17.7.10, macOS 14.7.8, and macOS 13.7.8.
