Summary: Apple has launched emergency updates to address a zero-day vulnerability, CVE-2025-24201, that has reportedly been used in highly targeted attacks. This flaw affects the WebKit browser engine across various devices and operating systems. Users are urged to install these patches quickly to mitigate further risks.
Affected: Apple Devices (iPhones, iPads, Macs, Apple Vision Pro)
Keypoints :
- The vulnerability allows attackers to exploit malicious web content to escape the Web Content sandbox.
- Security fixes have been issued for iOS, iPadOS, macOS, visionOS, and Safari across numerous models.
- This marks the third zero-day fix released by Apple in 2025, following two more fixes earlier this year.