Apr 01, 2025Ravie LakshmananMobile Security / Risk
Apple on Monday backported changes for three threats that have come under effective abuse in the wild to older versions and earlier versions of the operating systems.
The risks in issue are listed below-
- CVE-2025-24085 ( CVSS score: 7.3 )- A use-after-free insect in the Core Media component that could enable a malicious program already installed on a machine to elevate protections
- ( CVSS report: 4.6 )- An authorization issue in the Accessibility component that may make it possible for a malicious actor to activate USB Restricted Mode on a locked unit as part of a computer bodily harm
- ( CVSS report: 8.8 )- An out-of-bounds write concern in the WebKit part that could allow an intruder to create malicious web articles such that it can break out of the Web Content sandbox
The updates are presently available for the following operating system types-
The changes cover the following gadgets-
- iOS 15.8.4 and iPadOS 15.8.4- iPhone 6s ( all models ), iPhone 7 ( all models ), iPhone SE ( 1st generation ), iPad Air 2, iPad mini ( 4th generation ), and iPod touch (7th generation )
- iOS 16.7.11 and iphone 16.7.11- iPhone 8, phone 8 Plus, phone X, mobile 5th generation, touchscreen Pro 9.7-inch, and mobile Pro 12.9-inch 1st generation
- iphone 17.7.6- iPad Pro 12.9-inch 2nd generation, touchscreen Pro 10.5-inch, and mobile 6th era
The development comes as the tech giant released to cure 62 flaws, to switch 131 flaws, to handle 36 flaws, to patch 38 flaws, and to mend 14 flaws.
While none of the newly disclosed shortcomings have come under active exploitation, users are recommended to update their devices to the latest version to safeguard against potential threats.
Found this article interesting? Follow us on and to read more exclusive content we post.