{"id":2421,"date":"2025-08-22T09:51:58","date_gmt":"2025-08-22T09:51:58","guid":{"rendered":"https:\/\/ft365.org\/index.php\/2025\/08\/22\/apple-releases-patch-for-likely-exploited-zero-day-vulnerability\/"},"modified":"2025-08-22T09:51:58","modified_gmt":"2025-08-22T09:51:58","slug":"apple-releases-patch-for-likely-exploited-zero-day-vulnerability","status":"publish","type":"post","link":"http:\/\/ft365.org\/index.php\/2025\/08\/22\/apple-releases-patch-for-likely-exploited-zero-day-vulnerability\/","title":{"rendered":"Apple Releases Patch for Likely Exploited Zero-Day Vulnerability"},"content":{"rendered":"
\n

In a series of updates for its iOS, iPadOS, and macOS operating systems, Apple released a patch for a previously unknown vulnerability that has likely been exploited in highly targeted attacks.<\/p>\n

The vulnerability, tracked as CVE-2025-43300, is an out-of-bounds write vulnerability in the Image I\/O framework, Apple\u2019s built-in framework which allows \u00a0developers to read, write and manipulate image data efficiently.<\/p>\n

It affects macOS Ventura before version 13.7, macOS Sonoma before version 14.7, macOS Sequoia before version 15.6, iOS before 18.6 and iPadOS before 17.7 and 18.6.<\/p>\n

When the vulnerability is exploited, processing a malicious image file may result in memory corruption.<\/p>\n

Apple did not provide a severity score for this vulnerability.<\/p>\n

However, the company stated in an August 20 security advisory that it was “aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals.”<\/p>\n

The updates to patched versions, rolled out on August 20, included the following systems:<\/p>\n