Apple has made the right move to enhance user security. They have recently patched a total of nine zero-day vulnerabilities active in the wild. Even before this was 2025, experts pointed out some key flaws in WebKit. These vulnerabilities may allow attackers to run arbitrary code on impacted devices. These updates are significant across all of Apple’s platforms, including iOS, iPadOS, macOS, tvOS, watchOS, and visionOS.
Among the vulnerabilities, CVE-2025-43529, a use-after-free vulnerability in WebKit is addressed. This vulnerability can allow arbitrary code execution while processing specially crafted web content. According to Apple, this vulnerability may have already been exploited in a very targeted attack. It only affected a limited number of specific users running versions of iOS released prior to iOS 26.
Details of the Vulnerabilities
The CVEs Apple patched include CVE-2025-24085, CVE-2025-24200, CVE-2025-24201, CVE-2025-31200, CVE-2025-31201, CVE-2025-43200, and CVE-2025-43300. CVE-2025-14174 is a use after free memory corruption vulnerability in WebKit. It has a Common Vulnerability Scoring System (CVSS) score of 8.8, high severity level. Apple has acknowledged the shortcomings of the patched vulnerabilities. According to them, this is all the more reason to make sure devices are regularly updated to minimize risk of harm.
The forward-looking step the company has taken is to optimize its most-recent code releases to reach the broadest array of devices. iOS 26.2 and iPadOS 26.2 address critical vulnerabilities for all impacted devices. This improvement is especially aimed at the iPhone 11 and later phones, in addition to multiple generations of iPad Pro and iPad Air.
Compatibility and Availability of Updates
To make sure everybody is protected Apple has recently released updates across all platforms. iOS 18.7.3 and iPadOS 18.7.3 address security holes for iPhone XS and later devices. iPad 7th generation and up are fixed in this update. macOS Tahoe 26.2 offers robust mac defense for Macs operating on this fairly outdated version. At the same time, development tvOS 26.2 ahead of AppleTV HD and Apple TV 4K of any models.
WatchOS 26.2 addresses security flaws for the Apple Watch Series 6 and later devices. At the same time, visionOS 26.2 protects owners of any Apple Vision Pro generation. In addition, Safari 26.2 patches security flaws on Mac computers with the latest macOS Sonoma and newer macOS Sequoia.
Importance of Immediate Action
Apple recommends that everyone update their devices as soon as possible given the severe risk posed by these vulnerabilities. The company has come to the table acknowledging these shortcomings. They might enable perpetrators to breach sensitive information or run malicious code from afar.