Apple has released critical security updates across its entire operating system lineup, including macOS Sequoia 15.4.1, iOS 18.4.1, iPadOS 18.4.1, visionOS 2.4.1, and tvOS 18.4.1. These patches are essential because they fix two severe zero-day vulnerabilities—security flaws that have been actively exploited by attackers in the wild.
We strongly recommend installing these updates immediately to protect your devices against targeted attacks. Here is what you need to know about these flaws and how to apply the patches.
The Zero-Day Vulnerabilities Addressed
These patches fix issues in core components of the operating system that were reportedly used in highly sophisticated, targeted attacks against specific individuals on iOS. These types of vulnerabilities are particularly dangerous because they were being exploited before Apple was able to release a fix.
1. CoreAudio (CVE-2025-31200)
- Impact: Processing a maliciously crafted media file (e.g., a simple audio stream) could potentially lead to arbitrary code execution. This means a hacker could run commands on your device simply by tricking you into viewing a compromised media file.
- Fix: Apple addressed a memory corruption issue by improving bounds checking.
2. RPAC (CVE-2025-31201)
- Impact: This flaw could allow an attacker who already has basic read/write access to bypass Pointer Authentication. Bypassing this security mechanism is a critical step for attackers trying to gain deeper control over the device.
- Fix: Apple secured the system by completely removing the vulnerable code.
These patches are available for a wide range of devices, including all supported Macs running macOS Sequoia, iPhone XS and later, modern iPads, Apple Vision Pro, and all Apple TV 4K/HD models.
The Urgency of Immediate Patching
Four days after Apple released the fixes, a research group published technical details about the RPAC vulnerability (CVE-2025-31201). This is a common occurrence in the security world: once a patch is released, security researchers (and malicious actors) reverse-engineer the update to see exactly what code was changed.
This public exposure is a major reminder of two things:
- Once a vulnerability is known, threat actors immediately begin exploiting it against unpatched devices.
- You must prioritize upgrading your operating systems, as waiting gives hackers a large, unpatched target window.
Do not delay your updates.
How to Install Apple Security Updates
Before You Begin: Backup Your Data
It is always a good practice to back up your Mac, iPhone, or iPad before installing any major operating system update. This ensures you have a restore point if an issue arises during installation.
For macOS Sequoia Updates
The update is available via the system settings:
- Go to Apple menu > System Settings… > General > Software Update.
- If the update doesn't appear, press Command (⌘) + R on the Software Update screen or run
softwareupdate -lin Terminal, then check again.
CRITICAL NOTE ON MACOS: Apple only fully patches the latest major macOS version (currently macOS Sequoia). Older macOS versions often receive only a limited subset of security fixes, meaning they remain vulnerable to threats that the latest version addresses. For maximum security and privacy, you must stay on the newest macOS version your hardware supports.
For iOS and iPadOS Updates
You can perform an Over-The-Air (OTA) update directly on your device:
- Open the Settings app.
- Go to General > Software Update.
- Tap Download and Install.
Alternatively, connect your iPhone or iPad to your Mac and update via the Finder window sidebar, or use the Apple Devices app on a Windows PC.
Frequently Asked Questions (FAQ) 😊
Q: What is a "zero-day" vulnerability?
A zero-day is a security flaw that is actively being exploited by attackers before the software vendor (Apple) knows about it or has developed a patch. Because the exploit is "out in the wild," updates that fix zero-days are considered the most urgent.
Q: Why is updating older macOS versions not safe enough?
Apple focuses its full security development on the newest macOS release. Older versions often receive only a small subset of patches. This leaves them vulnerable to many modern threats, creating a security gap. You should use the latest macOS version supported by your hardware.
Q: Can the exploit be used against non-targeted individuals?
While Apple states the attack was "extremely sophisticated" and targeted, the details of the vulnerability are now publicly known. This increases the risk that other, less sophisticated attackers may quickly incorporate the exploit into their general malware, making all unpatched users vulnerable.