Apple has issued emergency updates to address two critical security vulnerabilities, CVE-2025-31200 and CVE-2025-31201, used in targeted attacks on iPhones and other devices. CVE-2025-31200, related to CoreAudio, allowed hackers to take control by exploiting malicious media files, while CVE-2025-31201 compromised a security mechanism called Pointer Authentication. The updates affect Apple devices including iPhones, iPads, Macs, and Apple TVs. The nature of these targeted attacks suggests potential connections to state-sponsored cyber threats, with researchers from Google also contributing to the discovery of these vulnerabilities.
Apple has identified two zero-day vulnerabilities affecting its CoreAudio and RPAC components, prompting an emergency update for targeted attacks on specific individuals.
The security flaws, CVE-2025-31200 and CVE-2025-31201, allowed hackers to exploit devices, emphasizing the need for vigilance against sophisticated cyber threats.
Collection
[
|
...
]