Summary: Apple has released iOS 18.3.2 and iPadOS 18.3.2 to address a serious WebKit vulnerability, CVE-2025-24201, which has reportedly been exploited in advanced attacks against targeted individuals. This fix is crucial as it protects users from a vulnerability that allows attackers to escape the Web Content sandbox, potentially leading to unauthorized actions. The update follows a prior fix related to USB security features, emphasizing Appleβs commitment to user protection against sophisticated threats.
Affected: Apple iOS and iPadOS systems
Keypoints :
- Release of iOS 18.3.2 and iPadOS 18.3.2 addresses the CVE-2025-24201 WebKit flaw.
- The vulnerability has been involved in sophisticated attacks on versions prior to iOS 17.2.
- Apple maintains secrecy around security issues until after investigations and fixes are implemented.
Source: https://www.securityweek.com/apple-ships-ios-18-3-2-to-fix-already-exploited-webkit-flaw/