Apple has rolled out critical software updates to address multiple security vulnerabilities across its ecosystem, including a zero-day flaw actively exploited in the wild. Tracked as CVE-2025-24085, this vulnerability is a use-after-free bug in the Core Media component that could allow a malicious application already installed on a device to escalate its privileges.

Apple confirmed that the flaw has been exploited against older versions of iOS, prior to iOS 17.2. To mitigate this threat, the company has introduced improved memory management in iOS 18.3 and iPadOS 18.3, compatible with iPhone XS and later, as well as several iPad models. Other impacted platforms include macOS Sequoia 15.3, tvOS 18.3, visionOS 2.3, and watchOS 11.3, with patches available for supported devices like Macs, Apple TVs, Apple Vision Pro, and Apple Watches.

In addition to the zero-day fix, Apple addressed five security flaws in AirPlay, all reported by researchers. These flaws could enable attackers to exploit system vulnerabilities, potentially causing unexpected system crashes, denial-of-service (DoS) conditions, or even arbitrary code execution. The vulnerabilities highlight potential risks in Apple's streaming and screen-sharing functionalities, which are now patched to enhance security for end-users. These updates underscore Apple's ongoing commitment to proactively addressing system vulnerabilities and collaborating with researchers to secure its products.

Google’s Threat Analysis Group (TAG) also contributed to this update cycle by identifying three flaws in the CoreAudio component, labeled CVE-2025-24160, CVE-2025-24161, and CVE-2025-24163. These issues could lead to unexpected app terminations when a device processes specially crafted files, underscoring the importance of securing multimedia processing components in modern operating systems. While details on the exploitation of these flaws remain sparse, Apple's swift response reflects the increasing importance of addressing vulnerabilities before they are weaponized by attackers.

With CVE-2025-24085 actively exploited, Apple urges all users to promptly apply these updates to protect against potential threats. The company has not disclosed specific information about the nature of the attacks or the actors involved but emphasized the importance of staying updated to reduce exposure to vulnerabilities. These patches reaffirm Apple's dedication to protecting its ecosystem, urging users to maintain up-to-date systems as the landscape of cyber threats continues to evolve.