Apple Patches Known Exploited Vulnerability - 20250128001¶
Overview¶
Apple have released a security advisory impacting multiple products containing a vulnerability known to be exploited in the wild.
What is vulnerable?¶
| Product(s) Affected | CVE | CVSS | Severity |
|---|---|---|---|
| iOS < 18.3 iPadOS < 18.3 macOS Sequoia < 15.3 |
CVE-2025-24085 | 7.3 | High |
| iPadOS < 17.7.4 MacOS Sequoia < 15.3 MacOS 14.7.3 |
CVE-2025-24118 | 9.8 | Critical |
What has been observed?¶
Apple is aware of exploitation in the wild. There is no evidence of exploitation affecting Western Australian Government networks at the time of publishing.
Recommendation¶
The WA SOC recommends administrators apply the solutions as per vendor instructions to all affected devices within expected timeframe of 48 Hours... (refer Patch Management):
- Apple Security Releases: https://support.apple.com/en-us/100100
Additional Resources¶
- SecurityOnline: https://securityonline.info/cve-2025-24085-apple-patches-actively-exploited-zero-day-vulnerability/
Change Log¶
- 2025-01-28: Initial publication.
- 2025-02-04: Added newly noted Critical CVE to vulnerability table.