High Threat Security Alert (A25-08-18): Vulnerability in Apple Products

Description:

Apple has released iOS 18.6.2, iPadOS 17.7.10, iPadOS 18.6.2, macOS Sequoia 15.6.1, macOS Sonoma 14.7.8 and macOS Ventura 13.7.8 to fix the vulnerability in various Apple devices. The list of vulnerability information can be found at:
https://support.apple.com/en-us/124925
https://support.apple.com/en-us/124926
https://support.apple.com/en-us/124927
https://support.apple.com/en-us/124928
https://support.apple.com/en-us/124929

Reports indicated that the vulnerability (CVE-2025-43300) is at a high risk of exploitation. Users are advised to take immediate action to patch your affected systems to mitigate the elevated risk of cyber attacks.

Affected Systems:

• iPhone XS and later
• iPad 6th generation and later, Air 3rd generation and later, mini 5th generation and later, Pro 10.5-inch, Pro 11-inch 1st generation and later, Pro 12.9-inch 2nd generation and later, Pro 13-inch
• macOS Sequoia prior to version 15.6.1
• macOS Sonoma prior to version 14.7.8
• macOS Ventura prior to version 13.7.8

Impact:

Depending on the vulnerability being exploited, a successful exploitation could lead to remote code execution and denial of service on an affected device.

Recommendation:

Patches for affected products are available. Users of affected systems should follow the recommendations provided by the vendor and take immediate actions to mitigate the risk.

The updates can be obtained through the auto-update mechanism. Users of affected systems should follow the recommendations provided by the vendor and take immediate actions to mitigate the risk.

More Information:

• https://support.apple.com/en-us/124925
• https://support.apple.com/en-us/124926
• https://support.apple.com/en-us/124927
• https://support.apple.com/en-us/124928
• https://support.apple.com/en-us/124929
• https://www.hkcert.org/security-bulletin/apple-products-remote-code-execution-vulnerability_20250821
• https://www.cve.org/CVERecord?id=CVE-2025-43300