143/68 Friday, April 18, 2025
Apple has released an emergency security update to address two actively exploited zero-day vulnerabilities found in targeted attacks against iPhones. The company confirmed the attacks were highly sophisticated and urged users to update their devices immediately.
The first vulnerability, CVE-2025-31200, resides in CoreAudio, where specially crafted media files could allow remote code execution (RCE) on a victim’s device when opened. The second flaw, CVE-2025-31201, affects RPAC (Remote Pointer Authentication Codes), potentially allowing attackers with read/write access to bypass iOS’s Pointer Authentication – a critical security feature that helps protect against memory corruption exploits.
These vulnerabilities impact multiple Apple operating systems including iOS, iPadOS, macOS, tvOS, and visionOS. Affected versions include iOS 18.4.1, macOS Sequoia 15.4.1, tvOS 18.4.1, and visionOS 2.4.1. Devices at risk range from iPhone XS and newer, several generations of iPads, all Apple TV models, and the Apple Vision Pro headset.
Although Apple has not disclosed the technical details of the attacks, the company confirmed that both vulnerabilities were exploited in the wild. These mark the fourth and fifth zero-day flaws patched by Apple in 2025, following previous incidents in January, February, and March – reinforcing the growing trend of targeted cyber threats against Apple users and the need for continuous security vigilance.
