Apple on Tuesday launched safety updates for its total software program portfolio, together with a repair for a vulnerability that Google stated was exploited as a zero-day within the Chrome net browser earlier this month.
The vulnerability, tracked as CVE-2025-6558 (CVSS rating: 8.8), is an incorrect validation of untrusted enter within the browser’s ANGLE and GPU parts that might lead to a sandbox escape through a crafted HTML web page.
Whereas there aren’t any particulars on how the problem has been weaponized by menace actors, Google acknowledged that an “exploit for CVE-2025-6558 exists within the wild.” Clément Lecigne and Vlad Stolyarov of Google’s Menace Evaluation Group (TAG) have been credited with discovering and reporting the shortcoming.
The iPhone maker, in its newest spherical of software program updates, additionally included patches for CVE-2025-6558, stating the vulnerability impacts the WebKit browser engine that powers its Safari browser.
“It is a vulnerability in open-source code and Apple Software program is among the many affected initiatives,” the corporate stated in an advisory, including it might be exploited to lead to an surprising crash of Safari when processing maliciously crafted net content material.
The bug has been addressed within the following variations –
- iOS 18.6 and iPadOS 18.6 – iPhone XS and later, iPad Professional 13-inch, iPad Professional 12.9-inch third technology and later, iPad Professional 11-inch 1st technology and later, iPad Air third technology and later, iPad seventh technology and later, and iPad mini fifth technology and later
- iPadOS 17.7.9 – iPad Professional 12.9-inch 2nd technology, iPad Professional 10.5-inch, and iPad sixth technology
- macOS Sequoia 15.6 – Macs operating macOS Sequoia
- tvOS 18.6 – Apple TV HD and Apple TV 4K (all fashions)
- watchOS 11.6 – Apple Watch Sequence 6 and later
- visionOS 2.6 – Apple Imaginative and prescient Professional
Whereas there is no such thing as a proof that the vulnerability has been used to focus on Apple system customers, it is at all times an excellent apply to replace to the newest variations of the software program for optimum safety.
