Skip to main content

A Singapore Government Agency Website

Government officials will never ask you to transfer money or disclose bank log-in details over a phone call.

Call the 24/7 ScamShield Helpline at 1799 if you are unsure if something is a scam.

Home
Alerts & Advisories
Alerts
High-Severity Zero-Day Vulnerability in Apple Products

Alerts

High-Severity Zero-Day Vulnerability in Apple Products

25 August 2025

Apple has released security updates addressing a zero-day vulnerability in their products. Users and administrators of iPhones, MacBooks, iPads and other affected Apple products are advised to update to the latest versions immediately.

Background

Apple has released security updates addressing a high-severity vulnerability (CVE-2025-43300) in their products.

Impact

CVE-2025-43300 is an out-of-bounds write vulnerability in Apple’s ImageIO framework. Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code using malicious image files.

Known Exploitation

Apple is aware that this vulnerability may have been exploited in targeted attacks.

Affected Products

iOS versions prior to 18.6.2

iPadOS versions prior to 18.6.2

iPadOS versions prior to 17.7.10

macOS Sonoma versions prior to 14.7.8

macOS Ventura versions prior to 13.7.8

macOS Sequoia versions prior to 15.6.1

Mitigation

Users and administrators of affected product versions are strongly advised to update to the latest versions immediately.

References

https://support.apple.com/en-us/124925

https://support.apple.com/en-us/124926

https://support.apple.com/en-us/124927

https://support.apple.com/en-us/124928

https://support.apple.com/en-us/124929

https://nvd.nist.gov/vuln/detail/CVE-2025-43300