Apple Patches Dangerous Zero-Day—Update Now!
October 6, 2025
Heads up, Apple users—this one’s a seriously bad apple that can truly ruin the whole bunch. The company just rushed out a patch for a dangerous zero-day flaw, CVE-2025-43300, that’s already being wielded in the wild against targeted individuals. If your devices are running on any Apple operating system, be it a smartphone, tablet, or computer, take heed of this advice that could prevent you from getting a lot of worms in your fruit.
The flaw sits in Apple’s Image I/O framework—basically, the software that handles your images. If someone sends you a malicious image, your device could write data wrong—called "out-of-bounds write"—leading to memory corruption. In everyday terms? It opens the door for hackers to take over your device or install malware, which really won’t keep the doctor away for anyone.
Which devices and software versions are impacted?
If your devices are running versions older than the following, you're vulnerable:
- iOS: versions up to 18.6.1 (patch is in 18.6.2)
- iPadOS: versions up to 17.7.9 (patch in 17.7.10), and up to 18.6.1 (patched in 18.6.2)
- macOS: Sequoia before 15.6.1, Sonoma before 14.7.8, Ventura before 13.7.8
CISA has already added this to its "Known Exploited Vulnerabilities" list and set a September 11, 2025 deadline for federal agencies to patch it.
What you should do right now:
- Update your iPhones, iPads, and Macs immediately using Software Update. Make sure you hit iOS/iPadOS 18.6.2, iPadOS 17.7.10, macOS Sequoia 15.6.1, Sonoma 14.7.8, or Ventura 13.7.8.
- Don’t delay—attackers are already using this. Yep. That’s what zero-day means. They were exploiting it even before a patch was ready.
- Bonus tip: keep your device set to auto-update to stay protected against future threats.
SUBSCRIBE TO WEEKLY NEWSLETTER
