Apple has released the iOS 18.3 update, urging all iPhone users to update their devices immediately due to a significant security patch that addresses 29 vulnerabilities, including one that has already been exploited in attacks, Forbes reports.
This update is crucial as it enhances the security of iPhones by fixing several serious issues in the system.
The main vulnerability addressed in iOS 18.3 is a flaw in CoreMedia, identified as CVE-2025-24085. This issue could allow a malicious application to gain elevated privileges, potentially compromising the security of the device. Apple has acknowledged that this vulnerability may have been actively exploited in iOS versions prior to iOS 17.2.
The iOS 18.3 update also includes patches for two other critical flaws in the iOS Kernel, which is the core component of the operating system. These vulnerabilities (CVE-2025-24107 and CVE-2025-24108) could allow apps to gain root privileges or execute code with Kernel-level access, posing a serious security risk.
In addition, the update addresses flaws in WebKit, which powers the Safari browser. One of the WebKit vulnerabilities could allow command injection attacks, where a hacker manipulates an app to execute harmful operating system commands. Another issue in AirPlay (CVE-2025-24137) could enable remote attackers to cause application crashes or execute malicious code.
Additionally, iOS 18.3 fixes a vulnerability in Passkeys that could allow unauthorized access to Bluetooth through a malicious app. These critical updates span a wide range of services, including accessibility features, web browsing, and system-level security components.
Apple has also rolled out similar updates for other platforms, including iPadOS 17.7.4, macOS Sequoia 15.3, macOS Sonoma 14.7.3, macOS Ventura 13.7.3, watchOS 11.3, tvOS 18.3, and visionOS 2.3 for the Apple Vision Pro headset. These updates address the same vulnerabilities, making it essential for users across Apple’s ecosystem to update their devices as soon as possible.
For iPhone users, particularly those with iPhone XS or newer models, updating to iOS 18.3 is crucial to mitigate the risks posed by these security flaws. Security experts, including Michael Covington from Jamf, stress the importance of installing updates promptly to protect devices from potential attacks. As he notes, staying current with the latest security patches is one of the most effective ways to safeguard against cyber threats.
In addition to the security fixes, users should be aware that AI features have been automatically enabled for iPhone 15 models and later. Those who prefer not to use these features can adjust their settings accordingly.
To update your device, simply go to Settings > Software Update and install the iOS 18.3 patch. By taking action now, you can ensure your iPhone remains secure against known vulnerabilities.
