Apple has released an urgent security update, iOS 18.4.1, and is strongly recommending all iPhone users to install it immediately. The update addresses two critical zero-day vulnerabilities that have been exploited in highly sophisticated attacks targeting specific individuals.
The first vulnerability, identified as CVE-2025-31200, resides in the CoreAudio component. This flaw allows attackers to execute arbitrary code on a device by processing a maliciously crafted audio stream. Security researchers from both Apple and Google’s Threat Analysis Group discovered this issue.
The second vulnerability, CVE-2025-31201, is found in the Remote Participant Audio Control (RPAC) framework. It enables attackers with arbitrary read and write capabilities to bypass Pointer Authentication, a security feature designed to protect against memory corruption. Apple addressed this issue by removing the vulnerable code.
While these attacks have been limited to specific targets, Apple emphasizes the importance of updating all devices to prevent potential exploitation
The iOS 18.4.1 update is available for the following devices:
- iPhone XS and later
- iPad Pro 13-inch
- iPad Pro 12.9-inch (3rd generation and later)
- iPad Pro 11-inch (1st generation and later)
- iPad Air (3rd generation and later)
- iPad (7th generation and later)
- iPad mini (5th generation and later)
In response to these threats, Apple highlights the “Lockdown Mode” feature for users who may be at high risk of targeted attacks. This mode significantly restricts device functionalities to protect against sophisticated cyber threats, such as state-sponsored spyware. Users can activate Lockdown Mode by navigating to Settings > Privacy & Security > Lockdown Mode.
Following the release of iOS 18.4.1, some users have reported issues, including unexpected shutdowns and charging problems. For instance, an iPhone 13 user noted repeated shutdowns unless the device was connected to a charger . Similarly, an iPhone 12 Pro Max user reported the device freezing and restarting frequently after the update.
Despite isolated reports of post-update issues, the security enhancements provided by iOS 18.4.1 are critical. Apple advises all users to install the update promptly to safeguard their devices against potential threats. Users experiencing problems post-update are encouraged to contact Apple Support for assistance.
