IOS 18.3 of Apple corrects a heavy list of 29 vulnerabilities, one has already been used in … (+)
Update, January 29, 2025: This story, initially published on January 27, now includes more details on the fixes issued alongside iOS 18.3 and features such as Auto-Enabled Apple Intelligence, as well as analyzes of additional experts On the update.
Apple has published iOS 18.3, as well as a warning to update your iPhone now. This is because iOS 18.3 corrects a heavy list of 29 vulnerabilities, one has already been used in attacks.
Apple does not give much details on the problems solved in iOS 18.3, because it wants to give people as long as possible before the attackers can only details.
But the problem already used to be corrected in iOS 18.3 is a defect Coredia monitoring like CVE-2025-24085 This could see a malicious application capable of raising privileges.
Apple is aware of a report that this problem may have been actively exploited against the versions of iOS before iOS 17.2, said the iPhone manufacturer on his assistance page.
What is fixed in iOS 18.3
IOS 18.3 of Apple also corrects two bugs in the nucleus at the heart of the iOS operating system. Followed under the name of CVE-2025-24107, the first defect could see a malicious application capable of obtaining root privileges. Meanwhile, the second problem could allow an application to execute code with the kernel privileges.
The iOS 18.3 updates several webkit faults, the engine underlying the Safari browser. A bug in the webkit web inspector could lead to order injection – where a malicious pirate tromits an application in the execution of operating system commands.
Meanwhile, a problem in Airplay followed the CVE-2025-24137 could allow an distant attacker to cause an implementation termination or an unexpected code execution.
Another bug in Passkeys could see an opponent using an application to obtain unauthorized access to Bluetooth.
Apple emits updates for Mac alongside iOS 18.3
Alongside iOS 18.3, iPados 18.3 and iPados 17.7.4, Apple Emitted MacOS Sequoia 15.3, MacOS Sonoma 14.7.3, MacOS Ventura 13.7.3, Watchos 11.3, TVOS 18.3, Visionos 2.3 for its Apple helmet Vision Pro and Safari 18.3, fixing a lot of the same problems – including the defect already exploited.
Why you should update to iOS 18.3 now
Apple published iOS 18.3 alongside iPados 17.7.4But there is not yet an iOS 17.7.4 update. This could be due to the fact that iOS 17 is not affected, or because Apple no longer offers the update of more recent devices, or that details are not yet available.
But at least for the moment, the lack of updates iOS 17 available means that you will be more secure if you IOS 18 Update.
The iOS 18.3 upgrade contains “several important security -related fixes”, explains Sean Wright, head of applications security at Featurespace. Given this, he strongly recommends that iOS users update “as soon as they can”.
Wright thinks that the most concerning the vulnerabilities set in iOS 18.3 are the defects of the nucleus, which he warns “could allow an attacker the ability to take total control of a device”.
The core problems corrected in iOS 18.3 could be chained with some of the other vulnerabilities, in particular CVE-2025-24150, to allow an attacker to do so remotely, warns Wright.
Many of the other vulnerabilities addressed in iOS 18.3 seem to be the denial of service or related to confidentiality, such as those allowing an attacker the possibility of fingerprint of a user or a device, says Wright.
It should also be noted that the Coremedia defect could have been exploited in the previous versions of iOS prior to iOS 18, says Wright: “This highlights the importance of going to iOS 18 now, because it seems that it n ‘There are no fixes in the old versions of iOS, ”he warns.
However, Wright thinks there is a silver lining – vulnerabilities seem difficult to exploit. “As a result, the risk for most users should be low, but it is always important to update when you can.”
Bogs corrections in the iOS 18.3 version “a large number of critical services”, including accessibility, the aircraft game, Coremedia, Kernel, Passkeys, Safari and Webkit, explains Michael Covington, vice-president of strategy to JAMF security security.
A close reading of publication notes gives an overview of the threat vectors that could potentially compromise iOS, he says. “In this particular version, we have seen fixes which prevent the applications locked from being bypassed, which block the attackers on local corruption networks, which prevent several flavors of denials of denial of service – and other correction designed To provide a more secure web browsing experience. »»
Covington advises users and organizations based on iPhones “to install security updates as quickly as possible”.
And iOS 18.3 “is no exception,” he says. “Staying up to date with the latest fixes is one of the most effective ways to protect the devices from attackers and make sure you stay protected.”
When you go to iOS 18.3, note that Apple automatically activated AI For the iPhone 15 and higher, check your settings and deactivate the features if you wish. By its very nature, AI needs data to function, and although the Apple Intelligence offer from the iPhone manufacturer is preserving confidentiality compared to competitors, it is always worth planning.
Apple applies security and confidentiality to its AI offer, with data processed on the device when possible and sent to Apple’s secure private calculation for more resource requests.
Apple Intelligence now includes updates to the Siri vocal assistant who take advantage of the partnership of the iPhone manufacturer with the Chatppt of the OPENAI IA giant. Apple will ask you for your authorization before sending chatgpt data, but when you use this feature, the less strict Privacy Poliation of Openai applies.
IOS 18.3 of Apple is available for the iPhone XS and later, Ipad Pro 13 inch, iPad Pro 12.9 inch 3rd generation and later, iPad Pro 11 inch 1st generation and later, iPad Air 3rd generation and later , iPad 7th generation and later and iPad Mini 5th generation and later.
In my mind, upgrading to iOS 18.3 is obvious. The update solves a problem that has been used in real attacks, which makes you important that you update as soon as possible to ensure the safety of your iPhone.
So what are you waiting for? Go to your iPhone settings> software update and download and install iOS 18.3 now.