An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 15.8.5 and iPadOS 15.8.5, iOS 16.7.12 and iPadOS 16.7.12, iOS 18.6.2 and iPadOS 18.6.2, iPadOS 17.7.10, macOS Sequoia 15.6.1, macOS Sonoma 14.7.8, macOS Ventura 13.7.8. Processing a malicious image file may result in memory corruption. Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals.
The vulnerability (CWE-787) consists of a write error outside the permitted memory area during processing of a specially crafted image file. Insufficient bounds checking allows an attacker to perform controlled overwrites of process memory areas. Delivering a malicious file to the victim — for example via message, email, or website — may be sufficient to trigger the error without requiring user interaction beyond opening or viewing the file.
Successful exploitation of the vulnerability can lead to memory corruption, and consequently to arbitrary code execution (RCE) in the context of the attacked application or system. An attacker can gain full control over the device, including access to sensitive data, ability to compromise system integrity, and disruption of its availability.
Systems must be immediately updated to the following versions containing the patch: iOS 18.6.2 / iPadOS 18.6.2, iOS 16.7.12 / iPadOS 16.7.12, iOS 15.8.5 / iPadOS 15.8.5, iPadOS 17.7.10, macOS Sequoia 15.6.1, macOS Sonoma 14.7.8, macOS Ventura 13.7.8. Details available in vendor references (support.apple.com).
iOS 15 before version 15.8.5, iOS 16 before version 16.7.12, iOS 17 (iPadOS) before version iPadOS 17.7.10, iOS 18 before version 18.6.2, iPadOS 15 before version 15.8.5, iPadOS 16 before version 16.7.12, iPadOS 18 before version 18.6.2, macOS Sequoia before version 15.6.1, macOS Sonoma before version 14.7.8, macOS Ventura before version 13.7.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:HApple iPadOS
OSApple< 15.8.516.0 – 16.7.12 (bez)17.0 – 17.7.10 (bez)18.0 – 18.6.2 (bez)Apple iOS
OSApple< 15.8.516.0 – 16.7.12 (bez)17.0 – 18.6.2 (bez)Apple macOS
OSApple13.0 – 13.7.8 (bez)14.0 – 14.7.8 (bez)15.0 – 15.6.1 (bez)
CISA KEV — detailsi
- Vendori
- Apple ↗
- Producti
- iOS, iPadOS, and macOS
- Added to KEVi
- August 21, 2025
- Remediation deadline (US Federal)i
- September 11, 2025(overdue)
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Apple iOS, iPadOS, and macOS contain an out-of-bounds write vulnerability in the Image I/O framework.
Related vulnerabilities
Type confusion w V8 (Google Chrome) — zdalne uszkodzenie sterty
Apple — memory corruption (RCE) w przetwarzaniu strumieni audio
Apple: Obejście Pointer Authentication w iOS, macOS i innych platformach
Apple WebKit: out-of-bounds write umożliwiający ucieczkę z sandbox przeglądarki
Use-after-free w Apple iOS/iPadOS/macOS — privilege escalation przez aplikację