Apple is taking urgent steps to address a critical zero-day vulnerability affecting iPhones and iPads, posing a significant risk amid rising cyber threats. Identified as CVE-2025-24201, the flaw exists in WebKit, Apple’s open-source framework used for rendering web content in apps like Safari, Mail, and the App Store. This vulnerability allows malicious web content to bypass the Web Content sandbox, enabling attackers to execute harmful actions on targeted devices. Specifically, it exploits an out-of-bounds write issue, where malicious code can overwrite memory and compromise device security.

Apple has confirmed that this vulnerability has been actively exploited in sophisticated, targeted attacks against users running iOS versions older than 17.2. These attacks often aim to steal sensitive data, such as passwords, financial information, or private communications, highlighting the urgency of the situation. To counter this, the company has released iOS 18.3.2 and iPadOS 18.3.2, which include enhanced security checks to address the vulnerability and strengthen device protection.

Affected Devices

The vulnerability impacts a wide range of Apple devices, including:

  • iPhone XS and newer models

  • iPad Pro (3rd generation and later, including 11-inch and 12.9-inch models)

  • iPad Air (3rd generation and later)

  • iPad (7th generation and later)

  • iPad mini (5th generation and later)

Why You Should Update to iOS 18.3.2

  1. Critical Security Fix: The update patches a zero-day vulnerability that has already been exploited in real-world attacks. Delaying the update leaves your device exposed to potential breaches.

  2. Enhanced Protection: iOS 18.3.2 introduces additional security checks to prevent malicious web content from bypassing the Web Content sandbox, reducing the risk of unauthorized actions on your device.

  3. Device Compatibility: The update is available for all affected devices, ensuring comprehensive protection across Apple’s ecosystem.

  4. Proactive Defense: Cyberattacks are becoming more sophisticated, and this update is part of Apple’s ongoing efforts to stay ahead of threats. Installing it promptly minimizes the risk of data breaches or device compromise.

  5. Peace of Mind: By updating, users can ensure their personal information, such as passwords, financial data, and private communications, remains secure against potential exploits.

How to Update

Updating to iOS 18.3.2 is simple:

  1. Go to Settings on your iPhone or iPad.

  2. Tap General > Software Update.

  3. If iOS 18.3.2 is available, tap Download and Install.

  4. Follow the on-screen instructions to complete the update.

Apple’s Commitment to Security

This update underscores Apple’s dedication to user security. By swiftly addressing vulnerabilities and releasing timely patches, Apple continues to set a high standard for protecting its users against evolving cyber threats. Regular updates are a critical part of maintaining device security and ensuring a safe digital experience.

Updating to iOS 18.3.2 is essential for maintaining device security, protecting sensitive data, and staying ahead of evolving cyber threats. Apple users should install the update immediately to mitigate risks and ensure their devices remain safe and functional.