Apple has asked millions of users to install a critical security update for iPhones and iPads. Released on March 13, 2025, this iOS patch addresses serious vulnerabilities, just over a month after the last update. The urgency underscores the risks at stake.
The update targets a flaw, CVE-2025-24201, in Webkit, the engine powering Safari and other iOS browsers. Apple noted, “Malicious web content could escape the Web Content sandbox.” Hackers exploited this gap, using fake sites to access device areas beyond the browser. This patch builds on a fix from iOS 17.2.
🛡️ We added Juniper Junos OS & Apple vulnerabilities, CVE-2025-21590 & CVE-2025-24201, to our Known Exploited Vulnerabilities Catalog. Visit https://t.co/myxOwap1Tf & apply mitigations to protect your org from cyberattacks. #Cybersecurity #InfoSec pic.twitter.com/mqZqJYabCN
— CISA Cyber (@CISACyber) March 13, 2025
The Apple security update applies to iPhone XS and, later, various iPad models like the Pro, Air, and mini from specified generations. However, Forbes reports a glitch: the update reactivates Apple Intelligence, even for disabled users, causing unexpected behavior.
🚨 Apple just patched a zero-day under active attack!
CVE-2025-24201 lets hackers escape the WebKit sandbox—Apple calls the exploit “extremely sophisticated.”
Targeted? Unknown
Duration? Unknown
But if you use an iPhone, Mac, or Vision Pro—update NOW.
📲 Details:… pic.twitter.com/m1y1jYuQr0
— The Hacker News (@TheHackersNews) March 12, 2025
This isn’t Apple’s first urgent plea in 2025. In February, the company flagged “sophisticated attacks” that could bypass USB Restricted Mode, a feature in place since iOS 11.4.1 to block data leaks via USB ports on locked devices. Apple confirmed these threats targeted specific individuals.
Read: Apple Postpones Siri AI Features Amid Internal Struggles
With hackers exploiting vulnerabilities, this Apple security update is vital for protection. Users should download it promptly to safeguard their devices, despite the minor Intelligence bug, as Apple prioritises security.