California: Apple has urged millions of iPhone and iPad users to update their devices immediately following the discovery of a serious security vulnerability. The California-based company released the latest iOS patch, just over a month after the previous update, indicating the severity of the issue.
While Apple does not publicly disclose security issues until investigations are completed, the recent update is believed to address a flaw identified as CVE-2025-24201. This vulnerability was found in Webkit, the browser engine powering Safari and other web browsers on Apple devices.
In a statement, Apple warned, “Maliciously crafted web content may be able to break out of Web Content sandbox. This is a supplementary fix for an attack that was blocked in iOS 17.2.”
Cybercriminals had been exploiting the flaw by creating fraudulent websites that, when visited, allowed them to gain access to parts of the device beyond the web browser.
Unintended bug in new update
Although the latest patch fixes the Webkit vulnerability, some users have reported an unintended issue. According to Forbes, Apple Intelligence has been reactivated on devices even if users had previously disabled it.
Devices eligible for the update
The security patch is available for the following Apple devices:
- iPhone XS and later
- iPad Pro 13-inch
- iPad Pro 12.9-inch (3rd generation and later)
- iPad Pro 11-inch (1st generation and later)
- iPad Air (3rd generation and later)
- iPad (7th generation and later)
- iPad mini (5th generation and later)
This is not the first time in recent weeks that Apple has urged its users to update their devices due to security concerns. In February, Apple acknowledged being targeted by “extremely sophisticated” cyberattacks, which exploited a flaw in USB Restricted Mode on locked devices.
At the time, Apple stated, “Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals.”
Apple’s Restricted Mode, introduced nearly seven years ago in iOS 11.4.1, prevents locked devices from transmitting data through the USB-C or Lightning port when connected to external accessories.
Users are strongly advised to install the latest update to protect their devices from potential threats.
Published: 14 Mar 2025, 10:29 am IST
Subscribe to our Newsletter
Disclaimer: Kindly avoid objectionable, derogatory, unlawful and lewd comments, while responding to reports. Such comments are punishable under cyber laws. Please keep away from personal attacks. The opinions expressed here are the personal opinions of readers and not that of Mathrubhumi.
