Apple Confirms Zero-Day Exploitation in Targeted Attacks on iPhone Users

Apple has recently released critical security patches to address two zero-day vulnerabilities that are being actively exploited on iPhone and iPad devices.

According to the tech giant, both vulnerabilities were used in highly sophisticated attacks targeting specific individuals prior to the release of iOS 26.

Critical WebKit Vulnerabilities Under Active Exploitation

The vulnerabilities, identified as CVE-2025-43529 and CVE-2025-14174, are found in WebKit, the browser engine that powers Safari and renders in-app web content on Apple devices.

Google’s Threat Analysis Group discovered both security flaws, highlighting the complex nature of the attacks and the level of sophistication involved.

CVE ID Component Vulnerability Type Exploitation Status
CVE-2025-43529 WebKit Use-after-free Actively exploited
CVE-2025-14174 WebKit Memory corruption Actively exploited

CVE-2025-43529 is a use-after-free vulnerability that could allow attackers to execute arbitrary code on a device by exploiting maliciously crafted web content.

Apple has addressed this issue by implementing improved memory management protocols to prevent exploitation.

The second vulnerability, CVE-2025-14174, involves memory corruption that can be triggered by processing specially designed web content, which Apple has resolved by introducing enhanced validation measures.

The vulnerabilities affect a wide range of Apple devices, including iPhone 11 and later models, as well as multiple generations of iPad devices.

Specifically, the affected devices include iPad Pro 12.9-inch 3rd generation and later, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 8th generation and later, and iPad mini 5th generation and later.

Apple’s confirmation of active exploitation highlights the critical nature of these vulnerabilities and the potential risks they pose to users.

The company has confirmed that these flaws were used in highly targeted attacks against specific individuals, suggesting that state-sponsored or advanced persistent threat actors may be involved.

Users of affected devices are advised to update to the latest iOS version as soon as possible to protect themselves against these actively exploited vulnerabilities.

The sophisticated nature of these attacks demonstrates the evolving threat landscape facing mobile device users, particularly those who are high-value targets.

Related Articles

Back to top button