Apple has released emergency security updates to patch two zero-day vulnerabilities that were actively exploited in highly targeted attacks on iPhones. These flaws affected a wide range of Apple devices and required immediate attention to prevent unauthorized access and potential data breaches.
"Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals on iOS," reads an Apple security bulletin released today.
Details of the Two Zero-Day Vulnerabilities
- CoreAudio Vulnerability (CVE-2025-31200): Found by Apple and Google’s Threat Analysis Group, this flaw allows attackers to execute remote code simply by getting a user to open a malicious media file. It impacts iOS, macOS, iPadOS, tvOS, and visionOS.
- RPAC Vulnerability (CVE-2025-31201): Discovered by Apple, this bug enables attackers to bypass iOS’s Pointer Authentication (PAC), a feature that guards against memory-related attacks.
Which Apple Devices Are Affected?
- iPhones: iPhone XS and newer
- iPads: iPad Pro 13-inch and 11-inch (3rd gen+), iPad Air (3rd gen+), iPad (7th gen+), iPad mini (5th gen+)
- Macs: macOS Sequoia
- Apple TV: All models including Apple TV HD and Apple TV 4K
- Vision Pro: All versions of Apple Vision Pro
What Should Users Do?
Although the attacks were targeted, Apple strongly recommends all users install the latest updates immediately to stay protected.
- iOS/iPadOS: 18.4.1
- macOS: Sequoia 15.4.1
- tvOS: 18.4.1
- visionOS: 2.4.1
Apple’s Security Track Record in 2025
With these latest fixes, Apple has addressed a total of five zero-day vulnerabilities this year:
- January: CVE-2025-24085
- February: CVE-2025-24200
- March: CVE-2025-24201
- April: CVE-2025-31200 and CVE-2025-31201