Apple has introduced iOS 18.3, emphasizing the need for users to update immediately due to 29 security vulnerabilities addressed in the update. Among these, one actively exploited flaw, CVE-2025-24085, poses a significant risk. This issue, found in CoreMedia, allows malicious applications to gain unauthorized access to sensitive system functions. Apple has intentionally limited the details of these vulnerabilities to give users adequate time to secure their devices before attackers can exploit them further.
Key Security Fixes in iOS 18.3
The update resolves critical Kernel vulnerabilities, including CVE-2025-24107, which could allow malicious apps to gain root access. Another Kernel issue could enable unauthorized code execution, further jeopardizing device security. WebKit, the engine powering Safari, received updates to address bugs such as one in Web Inspector that might permit command injection. Additional fixes include vulnerabilities in AirPlay, which could cause app crashes or code execution, and Passkeys, where attackers might exploit Bluetooth connections without authorization.
While iOS 18.3 was released alongside iPadOS 17.7.4, there is no equivalent iOS 17.7.4 update available. This may indicate that iOS 17 devices are either not affected by these issues or no longer prioritized for updates on newer hardware. Users on iOS 18 are encouraged to install the update to ensure maximum security, especially as the release includes patches for vulnerabilities actively used in attacks. Additionally, iPhone 15 models and later now have AI features enabled by default, a setting that can be adjusted post-update.
Compatibility and Device Coverage
iOS 18.3 is compatible with the iPhone XS and newer models, as well as several iPad models, including the iPad Pro, iPad Air (3rd generation and later), iPad mini (5th generation and later), and the iPad 7th generation and later. This broad compatibility ensures that a large number of devices benefit from the security enhancements and additional features provided by the update. Apple strongly advises all eligible device users to install the update promptly to mitigate risks associated with the vulnerabilities.
This update is particularly urgent due to the presence of an actively exploited vulnerability and numerous other security fixes. Users who delay updating risk exposing their devices to potential threats such as unauthorized access, malicious code execution, and data breaches. To ensure the security and performance of your device, navigate to Settings > Software Update and install iOS 18.3 immediately. Taking this step is critical to maintaining a safe and secure device environment.