Apple Backports Critical Fixes for 3 Recent Zero-Days Affecting Older iOS and macOS Devices

Apple has released a significant round of security updates, backporting fixes for three zero-day vulnerabilities that have been actively exploited in the wild to older models and previous versions of their operating systems.

These critical security patches address vulnerabilities that impact a wide range of devices, including older iPhones, iPads, and Mac computers that run previous versions of iOS, iPadOS, and macOS. Let’s break down each vulnerability and what users need to know.

  The Three Zero-Day Vulnerabilities

1. CVE-2025-24085 (CVSS Score: 7.3 – High)

This is a use-after-free bug in the Core Media component that could allow a malicious application already installed on a device to elevate privileges. Apple confirmed this flaw was actively exploited in attacks targeting versions of iOS prior to 17.2.

This vulnerability has been fixed in:

• macOS Sonoma 14.7.5
• macOS Ventura 13.7.5
• iPadOS 17.7.6

2. CVE-2025-24200 (CVSS Score: 4.6 – Medium)

This is an authorization issue in the Accessibility component that could make it possible for a malicious actor to disable USB Restricted Mode on a locked device as part of a cyber physical attack. The flaw allows attackers to bypass security checks and escalate privileges within the system, likely as part of a larger attack chain involving spyware or surveillance implants.

This vulnerability has been fixed in:

• iOS 15.8.4
• iPadOS 15.8.4
• iOS 16.7.11
• iPadOS 16.7.11

3. CVE-2025-24201 (CVSS Score: 8.8 – High)

This is an out-of-bounds write issue in the WebKit component that could allow an attacker to craft malicious web content such that it can break out of the Web Content sandbox. This sandbox escape could enable attackers to pair WebKit-based drive-by exploits with additional payloads, delivering malware or spyware onto devices through a simple browser click.

This vulnerability has been fixed in:

• iOS 15.8.4
• iPadOS 15.8.4
• iOS 16.7.11
• iPadOS 16.7.11

  Affected Devices

The fixes cover these specific devices:

• iOS 15.8.4 and iPadOS 15.8.4: iPhone 6s (all models), iPhone 7 (all models), iPhone SE (1st generation), iPad Air 2, iPad mini (4th generation), and iPod touch (7th generation)
• iOS 16.7.11 and iPadOS 16.7.11: iPhone 8, iPhone 8 Plus, iPhone X, iPad 5th generation, iPad Pro 9.7-inch, and iPad Pro 12.9-inch 1st generation
• iPadOS 17.7.6: iPad Pro 12.9-inch 2nd generation, iPad Pro 10.5-inch, and iPad 6th generation

  Larger Context of Apple’s Security Releases

This security update comes as Apple also released:

• iOS 18.4 and iPadOS 18.4 to remedy 62 flaws
• macOS Sequoia 15.4 to plug 131 flaws
• tvOS 18.4 to resolve 36 flaws
• visionOS 2.4 to patch 38 flaws
• Safari 18.4 to fix 14 flaws

The latest patches are part of a coordinated rollout spanning multiple operating system versions, ensuring protection for both modern and legacy devices. This rare but welcome commitment to long-tail device security bridges the gap between cutting-edge and end-of-life support.

 How CinchOps Can Help Secure Your Business

In light of these critical vulnerabilities, businesses must take proactive steps to secure their Apple devices. Here’s how CinchOps can help protect your organization:

1. Automated Patch Management: Our managed services ensure timely deployment of critical security patches across all your Apple devices, regardless of age or operating system version.
2. Vulnerability Assessment: We continuously monitor your device fleet for unpatched vulnerabilities and prioritize remediation based on risk levels and exploitation status.
3. Mobile Device Management (MDM): Our comprehensive MDM solution helps enforce security policies, manage updates, and remotely secure devices that may be compromised.
4. Security Awareness Training: We help educate your staff about the risks of suspicious websites and applications, reducing the likelihood of successful attacks.
5. Legacy Device Security: We specialize in securing older devices that may no longer receive regular updates but remain critical to business operations.

Discover more about our enterprise-grade and business protecting cybersecurity services on our Cybersecurity page.

Don’t wait until your business becomes a target. Contact CinchOps today to schedule a comprehensive security assessment and ensure your Apple ecosystem remains protected against the latest threats.

FREE CYBERSECURITY ASSESSMENT