Apple security patch release for CVE-2025-43300
Security Patch Release
Summary
Hide ▲
Show ▼
Apple released security updates for iOS, iPadOS, and macOS to fix CVE-2025-43300, an actively exploited zero-day in ImageIO that could cause memory corruption when processing a malicious image. Apple said the flaw may have been used in an extremely sophisticated attack against specific targeted individuals. The fixes apply across iOS 18.6.2, iPadOS 18.6.2, iPadOS 17.7.10, macOS Ventura 13.7.8, macOS Sonoma 14.7.8, and macOS Sequoia 15.6.1. WhatsApp also disclosed CVE-2025-55177, a zero-click flaw in its iOS and macOS clients, and said it may have been exploited together with CVE-2025-43300 in a sophisticated attack against specific targeted users.
Related Happenings
Microsoft April 2026 Patch Tuesday security updates (167 flaws)
Security Patch Release
First: 14.04.2026 20:41
Last: 14.04.2026 20:41
Sources 1
About this happening:
Microsoft's **April 2026 Patch Tuesday** ships **security updates** for **167 flaws**, including **2 zero-days**, reducing exposure across widely used Microsoft software. The rele...
Microsoft April 2026 Patch Tuesday security updates (167 flaws)
Security Patch ReleaseAbout this happening: Microsoft's **April 2026 Patch Tuesday** ships **security updates** for **167 flaws**, including **2 zero-days**, reducing exposure across widely used Microsoft software. The rele...
Apple iOS 18.7.7 security update expansion for DarkSword
Security Patch Release
First: 02.04.2026 00:50
Last: 02.04.2026 00:50
Sources 1
About this happening:
Apple expanded **iOS 18.7.7** availability to more older **iPhones and iPads** on **April 1, 2026**, letting devices that stay on **iOS 18** receive protections against the **acti...
Apple iOS 18.7.7 security update expansion for DarkSword
Security Patch ReleaseAbout this happening: Apple expanded **iOS 18.7.7** availability to more older **iPhones and iPads** on **April 1, 2026**, letting devices that stay on **iOS 18** receive protections against the **acti...
GIGABYTE security patch release for CVE-2026-4415
Security Patch Release
First: 01.04.2026 01:28
Last: 01.04.2026 01:28
Sources 1
About this happening:
**GIGABYTE** is directing users of **Control Center** to upgrade to **25.12.10.01** to mitigate **CVE-2026-4415**, a flaw that exposed systems to remote file writes. The update ma...
GIGABYTE security patch release for CVE-2026-4415
Security Patch ReleaseAbout this happening: **GIGABYTE** is directing users of **Control Center** to upgrade to **25.12.10.01** to mitigate **CVE-2026-4415**, a flaw that exposed systems to remote file writes. The update ma...
Coruna iOS exploit analysis ties updated Triangulation kernel exploit lineage
Technical Analysis
First: 26.03.2026 15:10
Last: 26.03.2026 15:10
Sources 1
About this happening:
**Coruna** has been linked to an **updated** exploit lineage from **Operation Triangulation**, showing that a long-running iPhone attack framework continues to evolve and can stil...
Coruna iOS exploit analysis ties updated Triangulation kernel exploit lineage
Technical AnalysisAbout this happening: **Coruna** has been linked to an **updated** exploit lineage from **Operation Triangulation**, showing that a long-running iPhone attack framework continues to evolve and can stil...
Operation Triangulation updated iPhone espionage campaign
Campaign
First: 26.03.2026 15:10
Last: 26.03.2026 15:10
Sources 1
About this happening:
The **Operation Triangulation** espionage lineage has resurfaced through **Coruna**, extending **zero-click iPhone** targeting to newer **A17** and **M3** devices and **iOS 17.2**...
Operation Triangulation updated iPhone espionage campaign
CampaignAbout this happening: The **Operation Triangulation** espionage lineage has resurfaced through **Coruna**, extending **zero-click iPhone** targeting to newer **A17** and **M3** devices and **iOS 17.2**...
Timeline
-
21.08.2025 07:47 5 articles · 9mo ago
Apple releases security updates for CVE-2025-43300
Mitigation Patch UpdateApple released security updates for iOS, iPadOS, and macOS to fix CVE-2025-43300, an out-of-bounds write in ImageIO that could cause memory corruption when processing a malicious image. The company said the issue has come under active exploitation in the wild and may have been used in an extremely sophisticated attack against specific targeted individuals. The updates cover iOS 18.6.2, iPadOS 18.6.2, iPadOS 17.7.10, macOS Ventura 13.7.8, macOS Sonoma 14.7.8, and macOS Sequoia 15.6.1.
Show sources
- Apple Patches CVE-2025-43300 Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks — thehackernews.com — 21.08.2025 07:47
- Apple warns customers targeted in recent spyware attacks — www.bleepingcomputer.com — 11.09.2025 22:02
- French Advisory Sheds Light on Apple Spyware Activity — www.darkreading.com — 12.09.2025 22:28
- Apple backports zero-day patches to older iPhones and iPads — www.bleepingcomputer.com — 16.09.2025 15:16
- WhatsApp patches vulnerability exploited in zero-day attacks — www.bleepingcomputer.com — 29.08.2025 19:31