Apple on Wednesday liberated Security updates for iOS, iPados, MacOS Sequoia, TVOS and Visionos to solve the two disadvantages of security, which, he said, came under active exploitation in the wild.
The vulnerabilities in question are below –
- Cve-2025-31200 (CVSS assessment: 7.5) – Memory corruption vulnerability Main audio Frame that can allow the execution of the code when processing audio potato in the abused media file
- Cve-2025-31201 (CVSS assessment: 6.8) – Vulnerability in the RPAC component that can be used by an attacker with an arbitrary reading and recording capacity Checking of the indexes
The iPhone manufacturer said he resorted to CVE-2025-31200 with improved boundaries check and CVE-2025-31201, deleting a vulnerable code.
Both vulnerabilities have been credited with Apple as well as Google Group Group (Tag) for Cve-2025-31200.
Apple, as usual with such recommendations, stated that the problems were “exploited in an extremely difficult attack on specific targets on iOS”.
With the latest Apple development has applied a total of five active zero days in its software since the beginning of the year –
- Cve-2025-24085 (CVSS assessment: 7.8) -was use of error mainly media companies that can allow the malicious application already installed on the device to raise privileges
- Cve-2025-24200 (CVSS assessment: 4.6) -Authorization problem in accessibility components that can allow the attacker to disable USB -rolled mode on a blocked device within the cyber -physical attack
- Cve-2025-24201 (CVSS’s assessment: 7.1)-PROBLEM with the record in the component
Updates available for following devices and operating systems –
- iOS 18.4.1 and iPados 18.4.1 -iphone XS, and later, iPad Pro 13-inch, iPad Pro 13.9-inch 3rd generation, and later, iPad Pro 11-in-gene, and later, iPad Air 3rd generation, and later, iPad 7th generation, and later, and iPad mini 5th generation, and later
- MacOS Sequoia 15.4.1 – Macs that manages MacOS Sequoia
- TVOS 18.4.1 – Apple TV HD and Apple TV 4K (all models)
- Visionos 2.4.1 – Apple Vision Pro
In light of active operation, users are advised to update their devices to the latest version to keep the risks.
