Vulnerabilities

Apple Patches Over 70 Vulnerabilities Across iOS, macOS, Other Products

Apple has released security updates for iOS 18 and macOS Sequoia 15 to address dozens of vulnerabilities.

Apple vulnerabilities

Apple on Monday announced fresh security updates for both iOS and macOS users, addressing over 70 CVEs across its platforms, including several bugs leading to protected file system modifications.

iOS 18.1 and iPadOS 18.1 are now rolling out to mobile users with patches for 28 vulnerabilities that could lead to information leaks, the disclosure of process memory, denial-of-service, sandbox escape, modification of protected system files, heap corruption, and access to restricted files.

According to Apple, the flaws were resolved with improved authentication, checks, logic, input validation, handling of content, memory management, private data redaction, state management, and file and memory handling.

The tech giant points to similar outcomes and resolutions for 59 security defects that were resolved with the macOS Sequoia 15.1 update that started rolling out on Monday. The patches address 15 issues that were also addressed in iOS and several flaws in third-party dependencies.

Affected platform components include App Support, CoreText, Foundation, ImageIO, Installer, Kernel, Pro Res, Safari Downloads, Safari Private Browsing, SceneKit, Shortcuts, Siri, and WebKit.

The macOS 15.1 update comes roughly three weeks after Apple released a Sequoia update to resolve compatibility issues with various security tools.

Advertisement. Scroll to continue reading.

While the iOS 18.1 and iPadOS 18.1 updates are available for the latest iPhone iPad Pro, iPad Air, iPad, and iPad mini generations, security updates were rolled out for older hardware iterations as well, in the form of iOS 17.7.1 and iPadOS 17.7.1, which address 17 vulnerabilities.

Additionally, Apple released macOS Sonoma 14.7.1 and macOS Ventura 13.7.1 with fixes for over 40 defects each, and announced the rollout of watchOS, tvOS, and visionOS security updates as well.

The tech giant makes no mention of any of these vulnerabilities being exploited in attacks, but users are advised to update their iOS and macOS devices as soon as possible. Additional information can be found on Apple’s security releases page.

Related: Apple Opens Private Cloud Compute for Public Security Inspection

Related: iPhone Mirroring Exposes Employees’ Personal Applications

Related: Researchers Abuse Apple’s Find My Network for Data Upload

Related: Apple’s iPhone Privacy Clampdown Arrives After 7-Month Delay

Related Content

Vulnerabilities

The updates fix vulnerabilities in WebKit, the kernel, WebRTC, Web Extensions, and other components affecting iPhone, iPad, Mac, and Safari users.

Endpoint Security

A standard non-admin account is sufficient to conduct an attack that exploits legitimate OS behavior rather than software vulnerabilities.

Application Security

The company blocked over 1.1 billion accounts and $2.2 billion in potentially fraudulent transactions.

Mobile & Wireless

The tech giant has also ported the patch for a recent deleted chats recovery issue to older versions of iOS.

Data Protection

Apple rolled out the security patches for dozens of iPhone and iPad models and generations.

Malware & Threats

Masquerading as popular cryptocurrency wallets, the apps can hijack recovery phrases and private keys.

Artificial Intelligence

RSAC researchers hacked Apple Intelligence using the Neural Exect method and Unicode manipulation.

Mobile & Wireless

The DarkSword exploit kit has been used by both state-sponsored hackers and commercial spyware vendors.

Copyright © 2026 SecurityWeek ®, a Wired Business Media Publication. All Rights Reserved.

Exit mobile version