Summary: Apple has released updates to address three actively exploited vulnerabilities in older device models and operating systems. The vulnerabilities allow for privilege escalation, disabling USB Restricted Mode, and breaking out of web content sandboxes. Users are urged to update to the latest operating system versions for enhanced security.
Affected: Apple devices and operating systems
Keypoints :
- Three critical vulnerabilities fixed include CVE-2025-24085, CVE-2025-24200, and CVE-2025-24201 with CVSS scores ranging from 4.6 to 8.8.
- Fixes are available for iOS 15.8.4, iOS 16.7.11, and iPadOS 17.7.6, impacting various generations of iPhones and iPads.
- In addition to these fixes, Apple released updates for other operating systems to address a total of 269 flaws across multiple platforms.
Source: https://thehackernews.com/2025/04/apple-backports-critical-fixes-for-3.html