Update your iPhone now to fix safari security flw
Apple has released iOS 18.3.2, an operating system update that fixes a vulnerability in webkit, the browser engine used by safari to render web pages. The flaw allowed malicious code running inside the web content sandbox, an islated environment for web processes designed to limit security risks, to impact other parts of the device.
Apple Previous Fixed This Vulnerability, Cve-2025-24201With the release of iOS 17.2 back in late 2023, but this release adds a supplemental patches. In the release notes For iOS 18.3.2, apple stated that the issue has been “Addressed with improved checks to prevent unauthorized actions.” That Same Patch has also been applied in ipados 18.3.2, Macos Sequoia 15.3.2, Visionos 2.3.2, and Safari 18.3.1.
“Vulnerabilities in Webkit Should Be Patched Quickly, as it is the Framework that Powers Safari and Renders Other Web-Based Content,” Adam Boynton, “Adam Boynton, Senior SENIOR SENIOUR SENIOUTY Stratety Strategy Strategy Manager ATPLEGER AATEGER AATEGER AATE SAPLE SAPELE SAPELE AANAGEGER AANAGEGE Firm Jamf, Told Techrepublic in an email.
“In this particular flw, attackers were able to use maliciously crafted web content to escape the iOS web content sandbox. Breaking out of a sandbox allows an attacker to access data in other parts of the operating system. “
A Mysterious Delay: Why did apple take so long?
It is not clear why the initial fixed was not sufficient or why apple has only no released the update this week, but the company does refer to “an extramely Sophistic Individuals on Versions of iOS Before iOS 17.2 ”which may have occurred recently. This sugges that state-sponsored hackers have been exploiting the Vulnerability to Surveil High-Profile Individuals, Such as Government Officials, Journalists, Journalists, or Seniors Executives Executives Executives Executives Executives.
See: Why is Apple Taking Legal Action against UK’s Government?
The fact that this update comes just a month after 18.3.1 and addresses only one security issue does indicate urgency. Cupertino typical withhlds detailed information about vulnerabilites in the early stages to give users time to update their devices. This strategy helps Prevent Attackers from Expliting The Flaw Before The Majority of Users have secured their systems with the latest update.
Curiously, iOS 18.3.1 Landed Just One Day after Google Released An update for its chrome browser On Mac, Windows, and Linux Devices which also Patches Cve-2025-24201. Like Apple, Google described it as an out-of-bounds write issue for the mac gpu and noted that it has a high impact and is aware that an exclit for it exists in the country. It was reported to google by apple security engineering and architecture on March 5, so it seems apple has been working on its patch for a number of weeks.
Why you should update your apple devices now
On top of Patching Cve-2025-24201, The Apple Update “Addresses an Issue That May Prevent Playback of Some Streaming Content.” Some Social Media Users have also also also reported that update loads with apple intelligence, apple’s bespoke artificial intelligence system, Automatically enabledeven if the user has previously switched it off. This is frustrating some users who don’t wish for their data to be analysed by the model, but they are able to swit to swit it off against.
Despite this, it’s recommended that apple users update their devices as soon as possible, especially that theose an older operating system Than iOS 17.2, to prevent bad actors attempting to expose Now-Publicized Vulnerability. It is available for iPhone XS and all newer iphones, as well as iPad Pro (11-inch, 3rd gen and later, and 12.9-inch, 1st gen and later), iPad air (3rd gen and later), iPad Gen and Later, IPAD (7th GEN and Later), and ipad mini (5th Gen and Later).
You should be prompted about the update automatically, but if not, you can initiate the download manually by going to settings, general, and then software update.
