Apple security update for CVE-2025-43300

Apple has released updates to fix a zero-day vulnerability, tracked as CVE-2025-43300, affecting macOS Sequoia, Ventura, Sonoma, iOS, and iPadOS. This out-of-bounds write flaw in the ImageIO framework can be exploited by processing a malicious image file, potentially leading to memory corruption.

Apple security update for CVE-2025-43300Apple security update for CVE-2025-43300

Apple noted that the vulnerability may have been used in sophisticated attacks against targeted individuals. The Cybersecurity and Infrastructure Security Agency (CISA) has added it to its Known Exploited Vulnerabilities Catalog, urging users to apply patches before September 11, 2025.

Apple security update for CVE-2025-43300Apple security update for CVE-2025-43300

This marks the seventh zero-day vulnerability patched by Apple this year, with affected products including:

iPhone XS and later
iPad (7th generation and later)
macOS Sequoia (versions before 15.6.1)
macOS Ventura (versions before 13.7.8)
macOS Sonoma (versions before 14.7.8)
To mitigate the risk, Apple has released the following updates:

iPadOS 17.7.10
macOS Sequoia 15.6.1
macOS Ventura 13.7.8
macOS Sonoma 14.7.8
iOS 18.6.2 and iPadOS 18.6.2


NPAV offers a robust solution to combat cyber fraud. Protect yourself with our top-tier security product, FraudProtector.net