If you have Apple devices, check them right now for a available security update. The company has released an emergency patch for a zero-day affecting a huge swath of devices running multiple versions of iOS, iPadOS, and macOS.
As BleepingComputer reports, the vulnerability (labeled CVE-2025-43300) is an out-of-bounds write flaw in the Image I/O framework that allows applications to read and write image file formats. Bad actors could exploit this flaw to corrupt memory via malicious image files or possibly remotely execute code on compromised systems.
According to Apple’s advisory detailing the update, the vulnerability may have been exploited in “extremely sophisticated attacks against specific targeted individuals,” though no additional details have been disclosed. That said, given how many devices and OS versions are impacted, everyone should install the patch as soon as possible.
Apple’s latest security fix
The patch Apple is pushing is meant to prevent exploitation of the zero-day bug in the following OS versions:
iOS 18.6.2
iPadOS 18.6.2
iPadOS 17.7.10
macOS Sequoia 15.6.1
macOS Sonoma 14.7.8
macOS Ventura 13.7.8
Affected devices include iPhone XS and later; Macs running macOS Sequoia, Sonoma, and Ventura; and a long list of iPads: iPad Pro 13-inch, iPad Pro 12.9-inch 3rd generation and later, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 7th generation and later, and iPad mini 5th generation and later, iPad Pro 12.9-inch 2nd generation, iPad Pro 10.5-inch, and iPad 6th generation.
How to install a patch on your Apple device
To check for security updates, go to System (or System Settings) > General > Software Update. If there’s a patch available, follow on-screen instructions to download and install it right away. You can also enable automatic updates for your device OS and/or security responses so you don’t have to stay on top of them manually.
Apple has released a handful of other security updates targeting zero-days so far this year.
