Apple has dropped software updates from the iPad and iPhone overnight. The updates address a vulnerability with WebKit – the underlying foundation of Safari.
Apple says the update fixes a vulnerability disclosed in CVE-2025-24201.
Here’s Apple information regarding the update:
Available for: iPhone XS and later, iPad Pro 13-inch, iPad Pro 12.9-inch 3rd generation and later, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 7th generation and later, and iPad mini 5th generation and later
Impact: Maliciously crafted web content may be able to break out of Web Content sandbox. This is a supplementary fix for an attack that was blocked in iOS 17.2. (Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals on versions of iOS before iOS 17.2.)
Description: An out-of-bounds write issue was addressed with improved checks to prevent unauthorized actions.
As always, we recommend keeping your devices up to date. You can do this manually by:
- Open Settings on your iPad or iPhone
- Go to General
- Launch Software Update
- Choose whether to update now or overnight
Anthony is the founder of Australian Apple News. He is a long-time Apple user and former editor of Australian Macworld. He has contributed to many technology magazines and newspapers as well as appearing regularly on radio and occasionally on TV.